3 matches found
CVE-2020-27956
An Arbitrary File Upload in the Upload Image component in SourceCodester Car Rental Management System 1.0 allows the user to conduct remote code execution via admin/index.php?page=managecar because .php files can be uploaded to admin/assets/uploads/ under the web root...
CVE-2020-27956
creationtimestamp| type| source ---|---|--- 2020-10-28 06:30:59+00:00| seen| https://t.me/cibsecurity/15673...
CVE-2020-27956
CVE-2020-27956 affects SourceCodester Car Rental Management System 1.0. The vulnerability arises from an arbitrary file upload in the Upload Image component, allowing a user to upload PHP files to admin/assets/uploads/ under the web root via admin/index.php?page=manage_car, leading to remote code...