Описание
A vulnerability classified as critical has been found in SourceCodester Best Employee Management System 1.0. This affects an unknown part of the file /_hr_soft/assets/uploadImage/Profile/ of the component Profile Picture Handler. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely.
Ссылки
- Permissions RequiredVDB Entry
- Permissions RequiredVDB Entry
- Third Party AdvisoryVDB Entry
- Product
Уязвимые конфигурации
EPSS
4.7 Medium
CVSS3
9.8 Critical
CVSS3
5.8 Medium
CVSS2
Дефекты
Связанные уязвимости
A vulnerability classified as critical has been found in SourceCodester Best Employee Management System 1.0. This affects an unknown part of the file /_hr_soft/assets/uploadImage/Profile/ of the component Profile Picture Handler. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely.
EPSS
4.7 Medium
CVSS3
9.8 Critical
CVSS3
5.8 Medium
CVSS2