提交 #312217: Sourcecodester Prison Management System v1.0 remote commandexecute信息

标题Sourcecodester Prison Management System v1.0 remote commandexecute
描述Prison Management System - File upload on (/Employee/edit-photo.php.Using $_FILES["avatar"]["name"] as the filename on the server can lead to file upload RCE attacks.
来源⚠️ https://github.com/fubxx/CVE/blob/main/PrisonManagementSystemRCE3.md
用户
 LI YU (UID 67398)
提交2024-04-08 05時46分 (2 年前)
管理2024-04-08 08時55分 (3 hours later)
状态重复
VulDB条目259630 [SourceCodester Prison Management System 1.0 Avatar /Admin/edit-photo.php 头像 权限提升]
积分0

Interested in the pricing of exploits?

See the underground prices here!