5 matches found
CVE-2021-42669
A file upload vulnerability exists in Sourcecodester Engineers Online Portal in PHP via dashboardteacher.php, which allows changing the avatar through teacheravatar.php. Once an avatar gets uploaded it is getting uploaded to the /admin/uploads/ directory, and is accessible by all users. By...
CVE-2021-42669
A file upload vulnerability exists in Sourcecodester Engineers Online Portal in PHP via dashboardteacher.php, which allows changing the avatar through teacheravatar.php. Once an avatar gets uploaded it is getting uploaded to the /admin/uploads/ directory, and is accessible by all users. By...
CVE-2021-42669
CVE-2021-42669 is a PHP file-upload vulnerability in Sourcecodester Engineers Online Portal (via dashboard_teacher.php and avatar upload through teacher_avatar.php). An uploaded avatar is stored under /admin/uploads/ and is accessible to all users. Attackers can upload a PHP webshell containing ...
Exploit for Unrestricted Upload of File with Dangerous Type in Engineers_Online_Portal_Project Engineers_Online_Portal
CVE-2021-42669 CVE-2021-42669 - Remote code execution via unre...
Exploit for Unrestricted Upload of File with Dangerous Type in Engineers_Online_Portal_Project Engineers_Online_Portal
CVE-2021-42669 CVE-2021-42669 - Remote code execution via unre...