CVE-2024-30849 | SourceCodester Complete E-Commerce Site 1.0 admin/products_photo.php filename unrestricted upload

Posted by Angelo Barbosa | Apr 5, 2024 | CVE

A vulnerability has been found in SourceCodester Complete E-Commerce Site 1.0 and classified as critical. This vulnerability affects unknown code of the file admin/products_photo.php. The manipulation of the argument filename leads to unrestricted upload.

This vulnerability was named CVE-2024-30849. The attack can be initiated remotely. There is no exploit available.

CVE-2024-30849 | SourceCodester Complete E-Commerce Site 1.0 admin/products_photo.php filename unrestricted upload

Related Posts

CVE-2024-4794 | Campcodes Online Laundry Management System 1.0 /manage_receiving.php id sql injection

CVE-2024-0849 | Leanote 2.7.0 file inclusion

CVE-2024-23130 | Autodesk AutoCAD/Advance Steel/Civil 3D SLDASM File ODXSW_DLL.dll memory corruption

shouzu sweets oz Messages information disclosure