Seat Reservation System version 1.0 suffers from an Unauthenticated File Upload Vulnerability allowing Remote Attackers to gain Remote Code Execution (RCE) on the Hosting Webserver via uploading PHP files.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/159260/Seat-Reservation-System-1.0-Shell-Upload.html | Exploit Third Party Advisory VDB Entry |
http://seclists.org/fulldisclosure/2020/Sep/41 | Exploit Mailing List Third Party Advisory |
https://packetstormsecurity.com/files/author/15149 | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-09-29T19:17:30
Updated: 2020-09-29T19:18:06
Reserved: 2020-09-18T00:00:00
Link: CVE-2020-25763
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-09-30T18:15:25.583
Modified: 2020-10-08T18:57:37.760
Link: CVE-2020-25763
JSON object: View
Redhat Information
No data.
CWE