| Title | CodeAstro Online Railway Reservation System 1.0 Unrestricted Upload of File with Dangerous Type |
|---|
| Description | A critical remote code execution (RCE) vulnerability has been identified in the Online Railway Reservation System developed by CodeAstro. The vulnerability is found in the /admin/emp-profile-avatar.php component, which is responsible for handling profile avatar uploads in the application's admin panel.
The issue arises from improper validation of uploaded files. Attackers can exploit this flaw by uploading a malicious file, such as a web shell, through the vulnerable endpoint. Once uploaded, the attacker can access the web shell and execute arbitrary commands on the server with the privileges of the web server process. |
|---|
| Source | ⚠️ https://github.com/CYB84/CVE_Writeup/blob/main/Online%20Railway%20Reservation%20System/RCE%20via%20File%20Upload.md |
|---|
| User | Raj Nandi (UID 73232) |
|---|
| Submission | 08/15/2024 08:31 (2 years ago) |
|---|
| Moderation | 08/17/2024 19:16 (2 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 275036 [CodeAstro Online Railway Reservation System 1.0 Profile Photo Update emp-profile-avatar.php unrestricted upload] |
|---|
| Points | 20 |
|---|