| タイトル | projectworlds.com rental And Property Listing Project V1.0 File unrestricted upload |
|---|
| 説明 | During the security review of "House rental And Property Listing", I discovered a critical file unrestricted upload vulnerability in the "/app/register.php?action=reg " file. This vulnerability arises from inadequate validation and restrictions on the parameter when handling file uploads, enabling attackers to upload arbitrary files. As a result, attackers can execute malicious code on the server, gain unauthorized access to the system, and compromise data security. Immediate remedial measures are required to ensure system security and protect data integrity. |
|---|
| ソース | ⚠️ https://github.com/1uzpk/cve/issues/4 |
|---|
| ユーザー | 1uzpk (UID 94148) |
|---|
| 送信 | 2026年01月06日 08:31 (5 月 ago) |
|---|
| モデレーション | 2026年01月06日 14:56 (6 hours later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 339686 [projectworlds House Rental and Property Listing 1.0 Signup register.php?action=reg image 特権昇格] |
|---|
| ポイント | 20 |
|---|