CVE-2024-0300
CVE-2024-0300 affects Beijing Baichuo/ Byzoro Smart S150 Management Platform up to version 20240101. The issue lies in the HTTP POST Request Handler, specifically the /useratte/userattestation.php component, where manipulating the web_img (or web img) parameter enables unrestricted file upload. T...