2 matches found
CVE-2024-53636
An arbitrary file upload vulnerability via writefile.php of Serosoft Academia Student Information System SIS EagleR-1.0.118 allows attackers to execute arbitrary code via ../ in the filePath parameter...
CVE-2024-53636
CVE-2024-53636 affects Serosoft Academia Student Information System (SIS) EagleR 1.0.118. A file upload flaw via writefile.php allows arbitrary code execution through path traversal in the filePath parameter ("../"), enabling remote compromise with network access and no user interaction as per th...