Lucene search

CVE-2024-4820

🗓️ 14 May 2024 15:12:45Reported by VulDBType

cve🔗 web.nvd.nist.gov👁 32 Views🌐 WEB

Critical unrestricted upload vulnerability in SourceCodester Online Computer and Laptop Store 1.0

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 3
Cvelist	CVE-2024-4820 SourceCodester Online Computer and Laptop Store unrestricted upload	13 May 202414:00	–	cvelist
NVD	CVE-2024-4820	14 May 202415:45	–	nvd
Vulnrichment	CVE-2024-4820 SourceCodester Online Computer and Laptop Store unrestricted upload	13 May 202414:00	–	vulnrichment

Nvd

Vulners

Node

oretnom23 online_computer_and_laptop_storeMatch1.0

[
  {
    "vendor": "SourceCodester",
    "product": "Online Computer and Laptop Store",
    "versions": [
      {
        "version": "1.0",
        "status": "affected"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
github	www.github.com/jxm68868/cve/blob/main/upload.md
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/

Parameter	Position	Path	Description	CWE
f	query param	/classes/SystemSettings.php	Unrestricted file upload vulnerability allowing remote exploits.	CWE-434

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

14 May 2024 15:45Current

6.8Medium risk

Vulners AI Score6.8

CVSS26.5

CVSS36.3 - 8.8

CVSS45.3

EPSS0.00099

SSVC

CWE-434