| Title | Projectworlds Online Admission System in PHP 1.0 Remote Code Execution |
|---|
| Description | An authenticated Remote Code Execution was found in Online Admission System in PHP. By allowing any file type to be uploaded on the server, an attacker can be able to upload malicious files in the server and execute them to gain foothold. |
|---|
| Source | ⚠️ https://github.com/keru6k/Online-Admission-System-RCE-PoC |
|---|
| User | keroomi (UID 62127) |
|---|
| Submission | 01/22/2024 09:28 (2 years ago) |
|---|
| Moderation | 01/22/2024 12:15 (3 hours later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 251699 [Project Worlds Online Admission System 1.0 documents.php unrestricted upload] |
|---|
| Points | 16 |
|---|