5 matches found
CVE-2020-28072
A Remote Code Execution vulnerability exists in DourceCodester Alumni Management System 1.0. An authenticated attacker can upload arbitrary file in the gallery.php page and executing it on the server reaching the RCE...
CVE-2020-28072
creationtimestamp| type| source ---|---|--- 2020-12-16 00:40:38+00:00| seen| https://t.me/cibsecurity/20887 2024-11-14 06:07:42+00:00| seen| MISP/e7e7c450-c23c-48c6-81eb-22ecfe0adf09...
CVE-2020-28072
A Remote Code Execution vulnerability exists in DourceCodester Alumni Management System 1.0. An authenticated attacker can upload arbitrary file in the gallery.php page and executing it on the server reaching the RCE...
CVE-2020-28072
CVE-2020-28072 affects DourceCodester Alumni Management System 1.0. An authenticated attacker can upload arbitrary PHP files via gallery.php and execute them on the server, achieving Remote Code Execution. Root cause is improper file upload handling enabling arbitrary file upload and execution. E...
Alumni Management System 1.0 Shell Upload
Exploit Title: Remote Code Execution on Alumni Management System Date: 23/10/2020 Exploit Author: Valerio Alessandroni Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/14524/alumni-management-system-using-phpmysql-s ource-code.html Version: 1.0...