7 matches found
CVE-2024-27747
File Upload vulnerability in Petrol Pump Mangement Software v.1.0 allows an attacker to execute arbitrary code via a crafted payload to the email Image parameter in the profile.php component...
Petrol Pump Management Software v1.0 - Remote Code Execution via File Upload Vulnerability
Exploit Title: Petrol Pump Management Software v1.0 - Remote Code Execution via File Upload Exploit Author: Shubham Pandey Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/17180/petrol-pump-management-software-free-download.html Version: 1.0 Tested...
Petrol Pump Management System 1.0 Shell Upload
Exploit Title: File Upload Remote Code Execution RCE in Petrol Pump Management Software v.1.0 Date: 01-03-2024 Exploit Author: Shubham Pandey Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/17180/petrol-pump-management-software-free-download.html...
CVE-2024-27747
File Upload vulnerability in Petrol Pump Mangement Software v.1.0 allows an attacker to execute arbitrary code via a crafted payload to the email Image parameter in the profile.php component...
CVE-2024-27747
File Upload vulnerability in Petrol Pump Mangement Software v.1.0 allows an attacker to execute arbitrary code via a crafted payload to the email Image parameter in the profile.php component...
CVE-2024-27747
File Upload vulnerability in Petrol Pump Mangement Software v.1.0 allows an attacker to execute arbitrary code via a crafted payload to the email Image parameter in the profile.php component...
CVE-2024-27747
Petrol Pump Management Software v1.0 (vendor mayuri_k) contains a file-upload vulnerability in profile.php via the Image parameter in the email field, enabling remote code execution. Root cause: insufficient validation of uploaded content allows uploading a PHP shell (as shown by PoCs) which can ...