2 matches found
CVE-2021-37372
Online Student Admission System 1.0 is affected by an insecure file upload vulnerability. A low privileged user can upload malicious PHP files by updating their profile image to gain remote code execution...
CVE-2021-37372
CVE-2021-37372 affects Online Student Admission System 1.0. The vulnerability is an insecure file upload that allows a low-privilege user to replace their profile image with a malicious PHP file, enabling remote code execution. Root cause cited in connected sources: lack of effective restrictions...