N/A

Arbitrary file upload vulnerability in SourceCodester Learning Management System v 1.0 allows attackers to execute arbitrary code, via the file upload to \lms\student_avatar.php.

N/A

N/A

SourceCodester Learning Management System 代码问题漏洞

SourceCodester Learning Management System是美国SourceCodester公司的一个在线学习管理系统。 SourceCodester Learning Management System 中存在代码问题漏洞，该漏洞源于产品的lmsstudent_avatar.php页面没有对用户上传的文件进行有效验证。攻击者可通过该漏洞执行任意代码。以下产品及版本受到影响：SourceCodester Learning Management System v1.0。

N/A

N/A