CVE-2024-10765 | Codezips Online Institute Management System up to 1.0 /profile.php old_image unrestricted upload

Inserito da Angelo Barbosa | Nov 4, 2024 | CVE

A vulnerability classified as critical was found in Codezips Online Institute Management System up to 1.0. This vulnerability affects unknown code of the file /profile.php. The manipulation of the argument old_image leads to unrestricted upload.

This vulnerability was named CVE-2024-10765. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-10765 | Codezips Online Institute Management System up to 1.0 /profile.php old_image unrestricted upload

Post correlati

CVE-2023-4629 | LadiApp Plugin up to 4.4 on WordPress save_config cross-site request forgery

CVE-2024-20736 | Adobe Acrobat 2020 out-of-bounds (apsb24-07)

CVE-2023-51812 | Tenda AX3 16.03.12.11 Parameter SetNetControlList list Privilege Escalation

CVE-2024-4786 | Lenovo Tab K10 certificate validation