CVE-2024-5745 | itsourcecode Bakery Online Ordering System 1.0 controller.php image unrestricted upload

Inserito da Angelo Barbosa | Giu 7, 2024 | CVE

A vulnerability was found in itsourcecode Bakery Online Ordering System 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/modules/product/controller.php?action=add. The manipulation of the argument image leads to unrestricted upload.

This vulnerability is traded as CVE-2024-5745. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-5745 | itsourcecode Bakery Online Ordering System 1.0 controller.php image unrestricted upload

Post correlati

CVE-2024-3248 | Xpdf up to 4.05 Attachment stack-based overflow

CVE-2024-2137 | All-in-One Addons for Elementor Plugin up to 2.4.8 on WordPress Pricing Widget cross site scripting

CVE-2024-3369 | code-projects Car Rental 1.0 add-vehicle.php Upload Image unrestricted upload

CVE-2023-6498 | Complianz Plugin up to 6.5.5 on WordPress Setting cross site scripting