This is a technical writeup describing an arbitrary file upload vulnerability in ZeeMatri v3x. The vulnerability allows attackers to upload malicious files disguised as images via the 'uploadsnaps.php' endpoint, potentially leading to remote code execution.
Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target:ZeeMatri v3x
No auth needed
Prerequisites:Access to the vulnerable endpoint '/uploadsnaps.php' · Ability to craft and upload a malicious file