提出 #272230: https://www.sourcecodester.com/users/walterjnr1 https://www.sourcecodester.com/php/16999/employee-management-system.html v1.0 Authenticated File upload bypass to RCE情報

タイトルhttps://www.sourcecodester.com/users/walterjnr1 https://www.sourcecodester.com/php/16999/employee-management-system.html v1.0 Authenticated File upload bypass to RCE
説明An authenticated file upload vulnerability was found, making it possible to successfully perform a bypass, and with this, we can upload a webshell for example, getting RCE, the vulnerability is found in the function called "edit-photo.php".
ソース⚠️ https://www.youtube.com/watch?v=z4gcLZCOcnc
ユーザー
 mtzsec (UID 52162)
送信2024年01月24日 03:37 (2 年 ago)
モデレーション2024年01月29日 08:15 (5 days later)
ステータス承諾済み
VulDBエントリ252277 [SourceCodester Employee Management System 1.0 Profile Page edit-photo.php 特権昇格]
ポイント13

概要

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!