| Title | SourceCodester Pet Management System 1 Remote Code Execution |
|---|
| Description | The Pet Grooming ERP application contains an Unrestricted File Upload vulnerability in the admin/profile.php module. An authenticated attacker can upload arbitrary files, including PHP code, instead of restricted image files. This results in Remote Code Execution (RCE) on the hosting server. |
|---|
| Source | ⚠️ https://github.com/drew-byte/Pet-Grooming-Management-RCE |
|---|
| User | drewbyte (UID 89075) |
|---|
| Submission | 08/30/2025 15:29 (10 months ago) |
|---|
| Moderation | 09/07/2025 18:28 (8 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 323036 [SourceCodester Pet Management System 1.0 /admin/profile.php website_image unrestricted upload] |
|---|
| Points | 18 |
|---|