In Sourcecodetester Printable Staff ID Card Creator System 1.0 after compromising the database via SQLi, an attacker can log in and leverage an arbitrary file upload vulnerability to obtain remote code execution.
Published: 2022-01-12
Description
In Sourcecodetester Printable Staff ID Card Creator System 1.0 after compromising the database via SQLi, an attacker can log in and leverage an arbitrary file upload vulnerability to obtain remote code execution.
AI Intelligence Brief
AI Intelligence
Analyzing vulnerability vectors…
🛡️CVE Intelligence Platform
Welcome to THREATQUARTERS
Your command center for real-time vulnerability intelligence — built for security professionals who need answers fast.
Search 200,000+ CVEs by ID, keyword, or technology
Instant CVSS scores, severity ratings and exploit / PoC links