CVE-2024-10161 | PHPGurukul Boat Booking System 1.0 Update Boat Image Page change-image.php image unrestricted upload

Posted by Angelo Barbosa | Oct 18, 2024 | CVE

A vulnerability, which was classified as critical, was found in PHPGurukul Boat Booking System 1.0. This affects an unknown part of the file change-image.php of the component Update Boat Image Page. The manipulation of the argument image leads to unrestricted upload.

This vulnerability is uniquely identified as CVE-2024-10161. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-10161 | PHPGurukul Boat Booking System 1.0 Update Boat Image Page change-image.php image unrestricted upload

Related Posts

CVE-2024-39918 | jasonraimondi url-to-png up to 2.1.1 path traversal

CVE-2024-40599 | GuMaxDD Skin up to 1.42.1 on MediaWiki Sidebar Menu cross site scripting

CVE-2023-5938 | Nozomi Networks Arc up to 1.5.x ZIP path traversal

CVE-2024-8970 | GitLab Community Edition/Enterprise Edition up to 17.2.8/17.3.4/17.4.1 Pipeline authorization (Issue 490916)