Sourcecodester Online Learning System 2.0 is vunlerable to sql injection authentication bypass in admin login file (/admin/login.php) and authenticated file upload in (Master.php) file , we can craft these two vunlerablities to get unauthenticated remote command execution.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
online learning system project online learning system 2.0 |