| 제목 | CodeAstro Online Railway Reservation System 1.0 Unrestricted Upload of File with Dangerous Type |
|---|
| 설명 | A critical remote code execution (RCE) vulnerability has been identified in the Online Railway Reservation System developed by CodeAstro. The vulnerability is found in the /admin/emp-profile-avatar.php component, which is responsible for handling profile avatar uploads in the application's admin panel.
The issue arises from improper validation of uploaded files. Attackers can exploit this flaw by uploading a malicious file, such as a web shell, through the vulnerable endpoint. Once uploaded, the attacker can access the web shell and execute arbitrary commands on the server with the privileges of the web server process. |
|---|
| 원천 | ⚠️ https://github.com/CYB84/CVE_Writeup/blob/main/Online%20Railway%20Reservation%20System/RCE%20via%20File%20Upload.md |
|---|
| 사용자 | Raj Nandi (UID 73232) |
|---|
| 제출 | 2024. 08. 15. AM 08:31 (2 연령 ago) |
|---|
| 모더레이션 | 2024. 08. 17. PM 07:16 (2 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 275036 [CodeAstro Online Railway Reservation System 1.0 Profile Photo Update emp-profile-avatar.php 권한 상승] |
|---|
| 포인트들 | 20 |
|---|