Printable Staff ID Card Creator System 1.0 - Authenticated Remote Code Execution via Arbitrary File Upload
In Sourcecodetester Printable Staff ID Card Creator System 1.0 after compromising the database via SQLi, an attacker can log in and leverage an arbitrary file upload vulnerability to obtain remote code execution.