Submeter #385896: itsourcecode Airline Reservation System 1.0 FileUploadinformação

Títuloitsourcecode Airline Reservation System 1.0 FileUpload
DescriçãoIn the admin/admin_class.php page, the save_settings method can be used to upload files. However, it does not consider the file type, allowing attackers to upload PHP files through /admin/ajax.php?action=save_settings.
Fonte⚠️ https://github.com/DeepMountains/zzz/blob/main/CVE1-5.md
Utilizador
 quad (UID 73025)
Submissão05/08/2024 10h05 (há 2 anos)
Moderação05/08/2024 17h45 (8 hours later)
EstadoAceite
Entrada VulDB273626 [itsourcecode Airline Reservation System 1.0 admin/admin_class.php save_settings img Elevação de Privilégios]
Pontos17

VoltarVisão GeralPróximo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!