| タイトル | Code-projects College Notes Uploading System v1.0 Arbitrary file upload vulnerability |
|---|
| 説明 | A Arbitrary file upload vulnerability vulnerability was identified within the " userprofile.php" file of the "College Notes Uploading System" project. The root cause is that attackers can bypass file type detection via "Content-Type". Then upload malicious Trojan files. As a result, attackers can upload malicious scripts and execute them to directly control servers, steal data, or launch subsequent attacks that seriously threaten system security. In order to safeguard system security and maintain data integrity and confidentiality, corrective action must be taken immediately. |
|---|
| ソース | ⚠️ https://github.com/jjjjj-zr/jjjjjzr18/issues/1 |
|---|
| ユーザー | jjjjjzr (UID 92774) |
|---|
| 送信 | 2025年12月26日 07:12 (4 月 ago) |
|---|
| モデレーション | 2025年12月28日 11:12 (2 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 338586 [code-projects College Notes Uploading System 1.0 userprofile.php image 特権昇格] |
|---|
| ポイント | 20 |
|---|