Описание
A flaw has been found in SourceCodester/jkev Record Management System 1.0. Affected by this issue is some unknown functionality of the file save_emp.php of the component Add Employee Page. This manipulation causes unrestricted upload. Remote exploitation of the attack is possible. The exploit has been published and may be used.
EPSS
Процентиль: 1%
0.00011
Низкий
4.7 Medium
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-284
Связанные уязвимости
CVSS3: 4.7
github
2 дня назад
A flaw has been found in SourceCodester/jkev Record Management System 1.0. Affected by this issue is some unknown functionality of the file save_emp.php of the component Add Employee Page. This manipulation causes unrestricted upload. Remote exploitation of the attack is possible. The exploit has been published and may be used.
EPSS
Процентиль: 1%
0.00011
Низкий
4.7 Medium
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-284