| Title | 1000 Projects Portfolio Management System MCA Project v1.0 Unrestricted Upload |
|---|
| Description | During the security review of "Portfolio Management System MCA Project using PHP and MySQL", wangjiawei discovered a critical arbitrary file upload vulnerability in the "/update_ach.php" file. This vulnerability can be exploited without requiring any special permissions. Immediate remedial measures are needed to ensure system security and protect data integrity. |
|---|
| Source | ⚠️ https://github.com/dawatermelon/CVE/blob/main/Portfolio%20Management%20System%20MCA%20Project/README5.md |
|---|
| User | wangjiawei (UID 79308) |
|---|
| Submission | 2024-12-25 08時20分 (3 月前) |
|---|
| Moderation | 2024-12-25 19時20分 (11 hours later) |
|---|
| Status | 已接受 |
|---|
| VulDB Entry | 289317 [1000 Projects Portfolio Management System MCA 1.0 /update_ach.php ach_certy 权限升级] |
|---|
| Points | 19 |
|---|