| タイトル | CodeAstro Online Railway Reservation System 1.0 Unrestricted Upload of File with Dangerous Type |
|---|
| 説明 | A critical remote code execution (RCE) vulnerability has been identified in the Online Railway Reservation System developed by CodeAstro. The vulnerability is found in the /admin/emp-profile-avatar.php component, which is responsible for handling profile avatar uploads in the application's admin panel.
The issue arises from improper validation of uploaded files. Attackers can exploit this flaw by uploading a malicious file, such as a web shell, through the vulnerable endpoint. Once uploaded, the attacker can access the web shell and execute arbitrary commands on the server with the privileges of the web server process. |
|---|
| ソース | ⚠️ https://github.com/CYB84/CVE_Writeup/blob/main/Online%20Railway%20Reservation%20System/RCE%20via%20File%20Upload.md |
|---|
| ユーザー | Raj Nandi (UID 73232) |
|---|
| 送信 | 2024年08月15日 08:31 (2 年 ago) |
|---|
| モデレーション | 2024年08月17日 19:16 (2 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 275036 [CodeAstro Online Railway Reservation System 1.0 Profile Photo Update emp-profile-avatar.php 特権昇格] |
|---|
| ポイント | 20 |
|---|