CVE-2021-44087

2022-03-1721:17:04

mitre

www.cve.org

10 High

AI Score

Confidence

High

0.035 Low

EPSS

Percentile

91.6%

JSON

A Remote Code Execution (RCE) vulnerability exists in Sourcecodester Attendance and Payroll System v1.0 which allows an unauthenticated remote attacker to upload a maliciously crafted PHP via photo upload.

References

sourcecodester.com

www.exploit-db.com/exploits/50801

www.sourcecodester.com/sites/default/files/download/oretnom23/apsystem.zip