CVE-2017-17593

CVE-2017-17593 affects Simple Chatting System 1.0 (PHP-based). The vulnerability is an arbitrary file upload via the endpoint view/my_profile.php, which allows uploaded files to be placed under uploads/. Root cause: insufficient input validation on file uploads (as described across CNVD/NVD recor...