CVE-2024-6373 | itsourcecode Online Food Ordering System up to 1.0 /addproduct.php photo unrestricted upload

Posted by Angelo Barbosa | Jun 27, 2024 | CVE

A vulnerability has been found in itsourcecode Online Food Ordering System up to 1.0 and classified as critical. This vulnerability affects unknown code of the file /addproduct.php. The manipulation of the argument photo leads to unrestricted upload.

This vulnerability was named CVE-2024-6373. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-6373 | itsourcecode Online Food Ordering System up to 1.0 /addproduct.php photo unrestricted upload

Related Posts

CVE-2023-6542 | SAP Emarsys SDK 100 on Android authorization

CVE-2024-1031 | CodeAstro Expense Management System 1.0 Add Expenses Page 5-Add-Expenses.php item cross site scripting

CVE-2024-35165 | Gutenify Plugin up to 1.4.0 on WordPress information disclosure

CVE-2024-7889 | Citrix Workspace App prior 2402 LTSR CU1/CR 2405 on Windows Local Privilege Escalation (CTX691485)