| Título | Sourcecodester Mobile Management Store 1.0 RCE via Arbitrary File Upload |
|---|
| Descrição | The upload avatar functionality in the admin page is vulnerable to Arbitrary File Upload that lead to Remote Code Execution. This allow the attacker to execute OS Commands using malicious PHP script. |
|---|
| Fonte | ⚠️ https://github.com/vanitashtml/CVE-Dumps/blob/main/RCE%20via%20Arbitrary%20File%20Upload%20in%20Mobile%20Management%20Store.md |
|---|
| Utilizador | rjavenido22 (UID 64261) |
|---|
| Submissão | 01/03/2024 14h04 (há 2 anos) |
|---|
| Moderação | 02/03/2024 23h15 (1 day later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 255501 [SourceCodester Online Mobile Management Store 1.0 /classes/Users.php img Elevação de Privilégios] |
|---|
| Pontos | 16 |
|---|