| Title | Sourcecodester Mobile Management Store 1.0 RCE via Arbitrary File Upload |
|---|
| Description | The upload avatar functionality in the admin page is vulnerable to Arbitrary File Upload that lead to Remote Code Execution. This allow the attacker to execute OS Commands using malicious PHP script. |
|---|
| Source | ⚠️ https://github.com/vanitashtml/CVE-Dumps/blob/main/RCE%20via%20Arbitrary%20File%20Upload%20in%20Mobile%20Management%20Store.md |
|---|
| User | rjavenido22 (UID 64261) |
|---|
| Submission | 03/01/2024 14:04 (2 years ago) |
|---|
| Moderation | 03/02/2024 23:15 (1 day later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 255501 [SourceCodester Online Mobile Management Store 1.0 /classes/Users.php img unrestricted upload] |
|---|
| Points | 16 |
|---|