3 matches found
CVE-2024-57487
In Code-Projects Online Car Rental System 1.0, the file upload feature does not validate file extensions or MIME types allowing an attacker to upload a PHP shell without any restrictions and execute commands on the server...
CVE-2024-57487
CVE-2024-57487 affects Code-Projects Online Car Rental System 1.0. The file upload feature does not validate file extensions or MIME types, allowing an attacker to upload a PHP shell and execute commands on the server. The issue is exploitable via the authenticated pathway described in published ...
CVE-2024-57487
creationtimestamp| type| source ---|---|--- 2025-01-10 22:00:05+00:00| published-proof-of-concept| Telegram/QXMR7F2jdeVfadE0UadP87cUoa84idsqcIO-k-scJwjtY 2025-01-13 16:53:46+00:00| seen| https://infosec.exchange/users/cve/statuses/113822087650712773 2025-01-13 16:53:48+00:00| seen|...