Submeter #641779: code-projects Mobile Shop Management System 1.0 Unrestricted Uploadinformação

Títulocode-projects Mobile Shop Management System 1.0 Unrestricted Upload
DescriçãoThe file upload function for product images fails to verify file types or sizes and directly uses filenames provided by users. This creates vulnerabilities that enable malicious file uploads and path traversal attacks. Attackers could upload executable files (such as php files) and then execute malicious code by accessing the upload directory.
Fonte⚠️ https://github.com/chen2496088236/CVE/issues/2
Utilizador
 111ctx (UID 89466)
Submissão26/08/2025 12h45 (há 10 meses)
Moderação02/09/2025 15h00 (7 days later)
EstadoAceite
Entrada VulDB322188 [code-projects Mobile Shop Management System 1.0 AddNewProduct.php ProductImage Elevação de Privilégios]
Pontos19

VoltarVisão GeralPróximo

Do you want to use VulDB in your project?

Use the official API to access entries easily!