An Arbitrary File Upload in the Upload Image component in SourceCodester Online Library Management System 1.0 allows the user to conduct remote code execution via admin/borrower/index.php?view=add because .php files can be uploaded to admin/borrower/photos (under the web root).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
online library management system project online library management system 1.0 |