| Title | Walterjnr1 Employee Management System V1.0 Unrestricted Upload |
|---|
| Description | The application suffers from an arbitrary file upload vulnerability. An attacker (regardless of their identity or privilege level) can construct a malicious file upload request to bypass file type restrictions. This allows the attacker to upload arbitrary executable files (such as malicious PHP scripts) directly to the server. Successful exploitation can lead to Remote Code Execution (RCE) or complete server takeover, severely compromising the system's integrity and security.
|
|---|
| Source | ⚠️ https://github.com/whatyourname12345/CVE/blob/main/EMS/EMS_UnrestrictedUpload.md |
|---|
| User | chenkh (UID 96588) |
|---|
| Submission | 03/20/2026 04:01 (18 days ago) |
|---|
| Moderation | 04/04/2026 16:48 (15 days later) |
|---|
| Status | Duplicate |
|---|
| VulDB entry | 252277 [SourceCodester Employee Management System 1.0 Profile Page edit-photo.php unrestricted upload] |
|---|
| Points | 0 |
|---|