| tiêu đề | Web Based Student Clearance 1.0 - Unrestricted File Upload leads to Remote Code Execution (Authenticated) |
|---|
| Mô tả | The application Web Based Student Clearance 1.0 is vulnerable to unrestricted file uploads which leads to Remote Code Execution. The url http://localhost/student_clearance_system_Aurthur_Javis/student_clearance_system_Aurthur_Javis/edit-photo.php allows a normal authenticated user to edit the photo which doesn't has filter to check the extension or file types which leads to upload different types of files. After uploading the file gets stored in http://localhost/student_clearance_system_Aurthur_Javis/student_clearance_system_Aurthur_Javis/uploads folder. After executing the file we can get the reverse shell which leads to Remote Code Execution. |
|---|
| Nguồn | ⚠️ https://www.acunetix.com/vulnerabilities/web/unrestricted-file-upload/ |
|---|
| Người dùng | l3v1ath0n (UID 33329) |
|---|
| Đệ trình | 09/10/2022 08:22 (cách đây 4 những năm) |
|---|
| Kiểm duyệt | 09/10/2022 08:31 (9 minutes later) |
|---|
| Trạng thái | được chấp nhận |
|---|
| Mục VulDB | 210367 [SourceCodester Web-Based Student Clearance System 1.0 Photo edit-photo.php nâng cao đặc quyền] |
|---|
| điểm | 20 |
|---|