Arbitrary File Upload Vulnerability in School Event Management System 1.0

Arbitrary File Upload Vulnerability in School Event Management System 1.0

CVE-2018-18793 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

School Event Management System 1.0 allows Arbitrary File Upload via event/controller.php?action=photos.

Learn more about our Web Application Penetration Testing UK.