Описание
File Upload vulnerability in the function for employees to upload avatars in Code-Projects Simple School Management System v1.0 allows attackers to run arbitrary code via upload of crafted file.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:code-projects:simple_school_management_system:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 42%
0.00199
Низкий
6.3 Medium
CVSS3
Дефекты
CWE-434
Связанные уязвимости
CVSS3: 6.3
github
почти 2 года назад
File Upload vulnerability in the function for employees to upload avatars in Code-Projects Simple School Management System v1.0 allows attackers to run arbitrary code via upload of crafted file.
EPSS
Процентиль: 42%
0.00199
Низкий
6.3 Medium
CVSS3
Дефекты
CWE-434