Published: 26/05/2023 Updated: 01/06/2023

CVSS v3 Base Score: 7.2 | Impact Score: 5.9 | Exploitability Score: 1.2

VMScore: 0

Sourcecodester Faculty Evaluation System v1.0 is vulnerable to arbitrary code execution via /eval/ajax.php?action=save_user.

Vulnerable Product	Search on Vulmon	Subscribe to Product
faculty evaluation system project faculty evaluation system 1.0

Faculty Evaluation System version 10 suffers from a remote shell upload vulnerability ...

Exploits

Exploits Online Pizza Ordering System Unauthenticated File Upload CVE-2023-2246 Multi-Vendor Online Groceries Management System Remote Code Execution Online Computer and Laptop Store Unauthenticated File Upload CVE-2023-31857 Faculty Evaluation System Unauthenticated File Upload CVE-2023-33440

NVD-CWE-noinfo https://github.com/F14me7wq/bug_report/blob/main/vendors/oretnom23/faculty-evaluation-system/RCE-1.md http://packetstormsecurity.com/files/172672/Faculty-Evaluation-System-1.0-Shell-Upload.html https://nvd.nist.gov https://github.com/Alexander-Gan/Exploits https://packetstormsecurity.com/files/172672/Faculty-Evaluation-System-1.0-Shell-Upload.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-33440

Vulnerability Summary

Vulnerability Trend

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect