Arbitrary Code Execution Vulnerability in Online Travel Agency System v.1.0 via File Upload in artical.php

Arbitrary Code Execution Vulnerability in Online Travel Agency System v.1.0 via File Upload in artical.php

CVE-2023-31946 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

File Upload vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via a crafted PHP file to the artical.php.

Learn more about our Web Application Penetration Testing UK.