CVE-2024-11661 | Codezips Free Exam Hall Seating Management System 1.0 Profile Image profile.php image unrestricted upload

Inserito da Angelo Barbosa | Nov 24, 2024 | CVE

A vulnerability was found in Codezips Free Exam Hall Seating Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file profile.php of the component Profile Image Handler. The manipulation of the argument image leads to unrestricted upload.

This vulnerability was named CVE-2024-11661. The attack can be initiated remotely. There is no exploit available.

The researcher submit confuses the vulnerability class of this issue.

CVE-2024-11661 | Codezips Free Exam Hall Seating Management System 1.0 Profile Image profile.php image unrestricted upload

Post correlati

CVE-2024-1500 | Royal Elementor Addons and Templates Plugin up to 1.3.91 on WordPress Logo Widget cross site scripting

CVE-2024-45293 | PHPOffice PhpSpreadsheet up to 1.29.0/2.1.0 Excel Parser XmlScanner.php toUtf8 xml external entity reference (GHSA-6hwr-6v2f-3m88)

CVE-2024-0469 | code-projects Human Resource Integrated System 1.0 update_personal_info.php sex sql injection

CVE-2023-1514 | Hitachi Energy RTU500 1.0.1.30/1.0.2/1.1.1 Scripting Interface certificate validation