A Remote Code Execution (RCE) vulnerability exists in Sourcecodester Attendance and Payroll System v1.0 which allows an unauthenticated remote attacker to upload a maliciously crafted PHP via photo upload.
CPE | Name | Operator | Version |
---|---|---|---|
attendance_and_payroll_system | eq | 1.0 |