Submeter #312217: Sourcecodester Prison Management System v1.0 remote commandexecuteinformação

TítuloSourcecodester Prison Management System v1.0 remote commandexecute
DescriçãoPrison Management System - File upload on (/Employee/edit-photo.php.Using $_FILES["avatar"]["name"] as the filename on the server can lead to file upload RCE attacks.
Fonte⚠️ https://github.com/fubxx/CVE/blob/main/PrisonManagementSystemRCE3.md
Utilizador
 LI YU (UID 67398)
Submissão08/04/2024 05h46 (há 2 anos)
Moderação08/04/2024 08h55 (3 hours later)
EstadoDuplicado
Entrada VulDB259630 [SourceCodester Prison Management System 1.0 Avatar /Admin/edit-photo.php Elevação de Privilégios]
Pontos0

Interested in the pricing of exploits?

See the underground prices here!