### Vulnerability Overview - **Vulnerability ID**: #800982 - **Vulnerability Name**: code-projects Online Lot Reservation System 1.0 Unrestricted Upload - **Vulnerability Description**: A vulnerability was discovered in Online Lot Reservation System 1.0 and is classified as a critical severity issue. This vulnerability affects an unknown function in `file activity.php`. By exploiting insufficient validation of uploaded files, an attacker can upload arbitrary files to unintended locations and potentially execute malicious code. The attack can be launched remotely. ### Affected Systems - **Affected System**: Online Lot Reservation System 1.0 - **Vulnerability Type**: Unrestricted Upload and Path Traversal ### Remediation - **Recommendation**: Strengthen validation of uploaded files to prevent the upload of arbitrary files to unintended locations. ### Additional Information - **Source**: [GitHub Issue](https://github.com/zzk6tb/cve/issues/3) - **User**: zlong (UID 96772) - **Submission Time**: September 20, 2026, 02:00 PM (18 days ago) - **Review Time**: September 21, 2026, 09:21 PM (17 days ago) - **Status**: Accepted - **ValDB Entry**: 359732 [code-projects Online Lot Reservation System 1.0 /activity.php directory unrestricted upload] - **Points**: 20 ### Community Content - Submissions are completed by ValDB community users; ValDB is not responsible for the content or external links. - Please use the original information and exercise caution with links, as they may contain malicious or harmful content. - ValDB entries contain reviewed, verified, and standardized information. ### Documentation - Submission Policy - Data Processing - CVE Handling ### Copyright Information - © 1997-2026 valdb.com · cc by-nc-sa - Language Options: de · en · fr · it · pt · zh · ja · ko · ru · ar · show more - Font: Pool: USAy2045