CVE-2024-10765 | Codezips Online Institute Management System up to 1.0 /profile.php old_image unrestricted upload

Inserito da Angelo Barbosa | Nov 4, 2024 | CVE

A vulnerability classified as critical was found in Codezips Online Institute Management System up to 1.0. This vulnerability affects unknown code of the file /profile.php. The manipulation of the argument old_image leads to unrestricted upload.

This vulnerability was named CVE-2024-10765. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-10765 | Codezips Online Institute Management System up to 1.0 /profile.php old_image unrestricted upload

Post correlati

CVE-2023-48762 | Crocoblock JetBlocks for Elementor Plugin on WordPress cross-site request forgery

CVE-2023-50251 | dompdf php-svg-lib up to 0.5.0 SVG File recursion

CVE-2024-33023 | Qualcomm Snapdragon Auto up to XR2 5G Platform Fence use after free

CVE-2024-48786 | SwitchBot com.theswitchbot.switchbot 5.0.4 Firmware Update information disclosure