| Title | hzmanyun.com education and training system v2.1 Command Injection To RCE |
|---|
| Description | The code snippet provided contains a vulnerability that allows an attacker to execute arbitrary commands on the server, leading to Remote Code Execution (RCE) due to improper handling of user input. |
|---|
| Source | ⚠️ https://github.com/heiheixz/report/blob/main/nxb_1.md |
|---|
| User | heihei_XZ (UID 81980) |
|---|
| Submission | 02/25/2025 14:25 (1 Year ago) |
|---|
| Moderation | 03/04/2025 14:50 (7 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 298520 [hzmanyun Education and Training System 2.1 /user/exportPDF ID command injection] |
|---|
| Points | 16 |
|---|