2 matches found
CVE-2023-1942 SourceCodester Online Computer and Laptop Store Avatar unrestricted upload
A vulnerability has been found in SourceCodester Online Computer and Laptop Store 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/?page=user of the component Avatar Handler. The manipulation leads to unrestricted upload. The attack can...
CVE-2023-1942
CVE-2023-1942 affects SourceCodester Online Computer and Laptop Store 1.0. The Avatar Handler’s /admin/?page=user functionality is vulnerable to unrestricted file uploads, enabling remote exploitation. Documents indicate an attacker can upload arbitrary files to execute code, with the vulnerabili...