Title:Faculty Evaluation System 安全漏洞 (CVE-2023-33440) Description:Faculty Evaluation System是Carlo Montero个人开发者的一个教师评估系统。 Sourcecodester Faculty Evaluation System v1.0版本存在安全漏洞,该漏洞源于可以通过 /eval/ajax.php?action=save_user 执行任意代码的攻击。
Description
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to arbitrary code execution via /eval/ajax.php?action=save_user.
File Snapshot
id: CVE-2023-33440
info:
name: Faculty Evaluation System v1.0 - Remote Code Execution
author: H
...
Shenlong Bot has cached this for you
Remarks
1. It is advised to access via the original source first.2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.