Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 9:5 p.m.10 views

CVE-2021-42669

A file upload vulnerability exists in Sourcecodester Engineers Online Portal in PHP via dashboardteacher.php, which allows changing the avatar through teacheravatar.php. Once an avatar gets uploaded it is getting uploaded to the /admin/uploads/ directory, and is accessible by all users. By...

10CVSS7.2AI score0.2327EPSS
Exploits3
ATTACKERKB
ATTACKERKB
added 2021/11/05 1:15 p.m.2 views

CVE-2021-42669

A file upload vulnerability exists in Sourcecodester Engineers Online Portal in PHP via dashboardteacher.php, which allows changing the avatar through teacheravatar.php. Once an avatar gets uploaded it is getting uploaded to the /admin/uploads/ directory, and is accessible by all users. By...

10CVSS5.9AI score0.2327EPSS
Exploits6References4
CVE
CVE
added 2021/11/05 12:36 p.m.70 views

CVE-2021-42669

CVE-2021-42669 is a PHP file-upload vulnerability in Sourcecodester Engineers Online Portal (via dashboard_teacher.php and avatar upload through teacher_avatar.php). An uploaded avatar is stored under /admin/uploads/ and is accessible to all users. Attackers can upload a PHP webshell containing ...

10CVSS9.6AI score0.2327EPSS
Exploits3References3Affected Software1
GithubExploit
GithubExploit
added 2021/11/03 8:52 p.m.166 views

Exploit for Unrestricted Upload of File with Dangerous Type in Engineers_Online_Portal_Project Engineers_Online_Portal

CVE-2021-42669 CVE-2021-42669 - Remote code execution via unre...

10CVSS9.9AI score0.2327EPSS
Exploits3
GithubExploit
GithubExploit
added 2021/11/03 8:52 p.m.426 views

Exploit for Unrestricted Upload of File with Dangerous Type in Engineers_Online_Portal_Project Engineers_Online_Portal

CVE-2021-42669 CVE-2021-42669 - Remote code execution via unre...

10CVSS9.9AI score0.2327EPSS
Exploits3
Rows per page
Query Builder