CVE-2026-0643 | projectworlds House Rental and Property Listing 1.0 Signup register.php?action=reg image unrestricted upload

Inserito da Angelo Barbosa | Gen 6, 2026 | CVE

A vulnerability has been found in projectworlds House Rental and Property Listing 1.0 and classified as critical. Impacted is an unknown function of the file /app/register.php?action=reg of the component Signup. This manipulation of the argument image causes unrestricted upload.

This vulnerability is registered as CVE-2026-0643. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

CVE-2026-0643 | projectworlds House Rental and Property Listing 1.0 Signup register.php?action=reg image unrestricted upload

Post correlati

CVE-2023-6842 | Formidable Forms Plugin up to 6.7 on WordPress cross site scripting

CVE-2024-1863 | Sante PACS Server Token Endpoint sql injection

CVE-2025-50972 | AbanteCart 1.4.2 index.php tmpl_id sql injection

CVE-2015-10140 | Darren Cooney Ajax Load More Plugin prior 2.8.1.2 on WordPress authorization