CVE-2020-28130

CVE-2020-28130

An Arbitrary File Upload in the Upload Image component in SourceCodester Online Library Management System 1.0 allows the user to conduct remote code execution via admin/borrower/index.php?view=add because .php files can be uploaded to admin/borrower/photos (under the web root).

Source: CVE-2020-28130

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다