Title | https://www.sourcecodester.com Prison Management System v1.0 remote command/code execute |
---|
Description | A critical vulnerability has been discovered in the Online Courseware. This affects the add-admin.php file. No checks are made on the contents and suffixes of files uploaded by users, allowing attackers to upload php files containing malicious code and perform remote command execution. |
---|
Source | ⚠️ https://github.com/fubxx/CVE/blob/main/PrisonManagementSystemRCE2.md |
---|
User | LI YU (ID 67398) |
---|
Submission | 07.04.2024 14:35 (1 month ago) |
---|
Moderation | 07.04.2024 15:14 (39 minutes later) |
---|
Status | принято |
---|
VulDB Entry | 259631 |
---|