Submit #296822: sourcecodester Employee Management System using PHP and MySQL 1.0 remote commandinfo

Titlesourcecodester Employee Management System using PHP and MySQL 1.0 remote command
DescriptionArbitrary file upload vulnerability in SourceCodester Employee Management System using PHP and MySQL allows attackers to execute arbitrary code via the file upload to add-admin.php. It is an open source project from https://www.sourcecodester.com/.
Source⚠️ https://github.com/LiAoRJ/CVE_Hunter/blob/main/RCE-1.md
User
 LiAoRJ (UID 43100)
Submission03/12/2024 02:06 (2 years ago)
Moderation03/12/2024 09:21 (7 hours later)
StatusAccepted
VulDB entry256454 [SourceCodester Employee Management System 1.0 /Admin/add-admin.php Avatar unrestricted upload]
Points16

Do you know our Splunk app?

Download it now for free!