| 标题 | code-projects Online Lot Reservation System 1.0 Unrestricted Upload |
|---|
| 描述 | A vulnerability has been found in Online Lot Reservation System 1.0 and classified as critical. This vulnerability affects an unknown function of the file activity.php. The manipulation of the argument directory in combination with insufficient validation of uploaded files leads to unrestricted upload and path traversal. This allows an attacker to upload arbitrary files to unintended locations and potentially execute malicious code on the server. The attack can be initiated remotely. |
|---|
| 来源 | ⚠️ https://github.com/zzk6th/cve/issues/3 |
|---|
| 用户 | z0ng (UID 96775) |
|---|
| 提交 | 2026-04-09 14時00分 (2 月前) |
|---|
| 管理 | 2026-04-26 21時21分 (17 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 359732 [code-projects Online Lot Reservation System 1.0 /activity.php directory 权限提升] |
|---|
| 积分 | 20 |
|---|