Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A File Upload vulnerability in SourceCodester Online Course Registration v1.0 allows remote attackers to achieve Remote Code Execution (RCE) on the hosting webserver by uploading a crafted PHP web-shell that bypasses the image upload filters. An attack uses /Online%20Course%20Registration/my-profile.php with the POST parameter photo.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Sourcecodester Online Grading System 代码问题漏洞
Vulnerability Description
Sourcecodester Online Grading System是一套学生信息管理系统。该系统提供学生信息管理和在线评分等功能。 SourceCodester Online Course Registration 1.0版本中存在安全漏洞。该漏洞允许远程攻击者上传特制的PHP web-shell,从而实现远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A