| 标题 | The online pizza ordering system has a file upload (RCE) vulnerability |
|---|
| 描述 | Online pizza ordering system exists file upload (RCE) vulnerability, vulnerability exists in save_menu() function, can upload any format of the file, and execute any code, the function of the file name timestamp confusion, but can be predicted, can be used by malicious users to upload any file execution code, access to the server.
Source Download:https://www.sourcecodester.com/download-code?nid=16166&title=Online+Pizza+Ordering+System+in+PHP+Free+Source+Code |
|---|
| 来源 | ⚠️ https://github.com/Fchen-xcu/Vulnerability-Set/blob/main/The%20online%20pizza%20ordering%20system%20has%20a%20file%20upload%20(RCE)%20vulnerability.pdf |
|---|
| 用户 | ChengFei (UID 42742) |
|---|
| 提交 | 2023-03-14 09時17分 (3 年前) |
|---|
| 管理 | 2023-03-14 15時24分 (6 hours later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 222979 [SourceCodester Online Pizza Ordering System 1.0 save_menu 权限提升] |
|---|
| 积分 | 20 |
|---|