CVE-2020-23828 – A File Upload vulnerability in SourceCodester Online Course Registration v1.0 allows remot …

15 September 2020

Vuln ID: CVE-2020-23828

Published: 2020-09-15 22:15:13Z

Description: A File Upload vulnerability in SourceCodester Online Course Registration v1.0 allows remote attackers to achieve Remote Code Execution (RCE) on the hosting webserver by uploading a crafted PHP web-shell that bypasses the image upload filters. An attack uses /Online%20Course%20Registration/my-profile.php with the POST parameter photo.

Source: NVD.NIST.GOV

Date:

15 September 2020

Categorie(s):

NVD

Tag(s):

NVD

Top 5 Cybersecurity Threats That eCommerce Websites Should Watch Out For23 April 2024
Google ad for Facebook redirects to scam23 April 2024
Robofly, CRUSHFTP, Github, Palo Alto, MITRE, Fancy Bear, Deepfakes, Aaran Leyland… – SWN #38023 April 2024
How To Get A Cybersecurity Job With No Experience23 April 2024
How to fix iCloud sync in seconds23 April 2024