Remote Code Execution (RCE) Vulnerability in Sourcecodester Online Reviewer System 1.0 via Bypassing Image Upload Filters

Remote Code Execution (RCE) Vulnerability in Sourcecodester Online Reviewer System 1.0 via Bypassing Image Upload Filters

CVE-2021-41646 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Remote Code Execution (RCE) vulnerability exists in Sourcecodester Online Reviewer System 1.0 by uploading a maliciously crafted PHP file that bypasses the image upload filters..

Learn more about our Web Application Penetration Testing UK.