Submit #271228: Projectworlds Online Admission System in PHP 1.0 Remote Code Executioninfo

TitleProjectworlds Online Admission System in PHP 1.0 Remote Code Execution
DescriptionAn authenticated Remote Code Execution was found in Online Admission System in PHP. By allowing any file type to be uploaded on the server, an attacker can be able to upload malicious files in the server and execute them to gain foothold.
Source⚠️ https://github.com/keru6k/Online-Admission-System-RCE-PoC
User
 keroomi (UID 62127)
Submission01/22/2024 09:28 (2 years ago)
Moderation01/22/2024 12:15 (3 hours later)
StatusAccepted
VulDB entry251699 [Project Worlds Online Admission System 1.0 documents.php unrestricted upload]
Points16

Do you know our Splunk app?

Download it now for free!