CVE-2024-7500 | itsourcecode Airline Reservation System 1.0 admin/admin_class.php save_settings img unrestricted upload

Posted by Angelo Barbosa | Aug 5, 2024 | CVE

A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been rated as critical. Affected by this issue is the function save_settings of the file admin/admin_class.php. The manipulation of the argument img leads to unrestricted upload.

This vulnerability is handled as CVE-2024-7500. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-7500 | itsourcecode Airline Reservation System 1.0 admin/admin_class.php save_settings img unrestricted upload

Related Posts

CVE-2024-31974 | Solarized FireDown Browser & Downloader 1.0.76 on Android WebView permission

CVE-2021-46905 | Linux Kernel up to 5.12.0 hso hso_serial_tty_unregister null pointer dereference

CVE-2023-49442 | JEECG up to 4.0 HTTP POST Request jeecgFormDemoController deserialization

CVE-2023-6598 | SpeedyCache Plugin up to 1.1.3 on WordPress Options Update authorization