| Título | github.com Remote Clinic System V2.0 File unrestricted upload |
|---|
| Descrição | During the security review of "Remote Clinic System", I discovered a critical file unrestricted upload vulnerability in the "/staff/edit-my-profile.php " file. This vulnerability arises from inadequate validation and restrictions on the parameter when handling file uploads, enabling attackers to upload arbitrary files. As a result, attackers can execute malicious code on the server, gain unauthorized access to the system, and compromise data security. Immediate remedial measures are required to ensure system security and protect data integrity. |
|---|
| Fonte | ⚠️ https://github.com/diy777/cve/issues/2 |
|---|
| Utilizador | diy777 (UID 89447) |
|---|
| Submissão | 25/08/2025 03h12 (há 10 meses) |
|---|
| Moderação | 31/08/2025 22h02 (7 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 322075 [RemoteClinic até 2.0 edit-my-profile.php image Elevação de Privilégios] |
|---|
| Pontos | 20 |
|---|