| tiêu đề | SourceCodester Hotel and Lodge Management System 1.0 Unrestricted Upload |
|---|
| Mô tả | A vulnerability, which was classified as critical, was found in sourcecodester Hotel and Lodge Management System 1.0. This affects some
unknown functionality of the file /manage_website.php . The manipulation of the argument with an unknown input leads to a unrestricted upload vulnerability. The product allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment. This is going to have an impact on confidentiality, integrity, and availability.
User can update file through /manage_website.php
Web application doesn't sanitize or filters the being uploaded, making it vulnerable to arbitrary file upload vulnerability, that can also lead to Remote Code Execution. |
|---|
| Nguồn | ⚠️ https://github.com/TThuyyy/cve1/issues/13 |
|---|
| Người dùng | liuzhouyang1 (UID 91112) |
|---|
| Đệ trình | 30/09/2025 03:42 (cách đây 7 các tháng) |
|---|
| Kiểm duyệt | 08/10/2025 06:48 (8 days later) |
|---|
| Trạng thái | được chấp nhận |
|---|
| Mục VulDB | 327588 [SourceCodester Hotel and Lodge Management System đến 1.0 /manage_website.php website_image/back_login_image nâng cao đặc quyền] |
|---|
| điểm | 20 |
|---|