Gửi #618946: code-projects Church Donation System V1.0 Unrestricted Uploadthông tin

tiêu đềcode-projects Church Donation System V1.0 Unrestricted Upload
Mô tảDuring the security assessment of "Church Donation System", I detected a critical unrestricted file upload vulnerability in the "/members/admin_pic.php" file. This vulnerability is attributed to the insufficient validation of uploaded files. Attackers can upload arbitrary files by bypassing file extension checks, MIME type validation, or content inspection. This enables them to execute unauthorized code on the server, posing a significant threat. Immediate corrective measures are required to safeguard system security and protect business data.
Nguồn⚠️ https://github.com/n0name-yang/myCVE/issues/16
Người dùng
 n0name (UID 82970)
Đệ trình19/07/2025 13:03 (cách đây 12 các tháng)
Kiểm duyệt21/07/2025 08:30 (2 days later)
Trạng tháiđược chấp nhận
Mục VulDB317060 [code-projects Church Donation System 1.0 /members/admin_pic.php image nâng cao đặc quyền]
điểm20

Want to stay up to date on a daily basis?

Enable the mail alert feature now!