Arbitrary File Upload and Remote Code Execution in PHP Scripts Mall Schools Alert Management Script 2.0.2 via Profile Picture

Arbitrary File Upload and Remote Code Execution in PHP Scripts Mall Schools Alert Management Script 2.0.2 via Profile Picture

CVE-2018-6860 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Arbitrary File Upload and Remote Code Execution exist in PHP Scripts Mall Schools Alert Management Script 2.0.2 via a profile picture.

Learn more about our Web Application Penetration Testing UK.