jxm68868

1 exploit Active since May 2024
CVE-2024-4820 WRITEUP MEDIUM WORKING POC
Online Computer and Laptop Store 1.0 - Unrestricted File Upload via SystemSettings Update
A vulnerability was found in SourceCodester Online Computer and Laptop Store 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /classes/SystemSettings.php?f=update_settings. The manipulation leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-263941 was assigned to this vulnerability.
CVSS 6.3