Lookup for vulnerabilities affecting packages.
| Vulnerability_id | VCID-a7rv-rmpc-zkh4 |
|---|
| Summary | File Upload vulnerability in Prison Management System v.1.0 allows a remote attacker to execute arbitrary code via the file upload component. |
|---|
| Aliases |
|
|---|
| Fixed_packages |
|
|---|
| Affected_packages |
|
|---|
| References |
|
|---|
| Weaknesses |
|
|---|
| Exploits |
| 0 |
| date_added |
null |
| description |
This module exploits an unrestricted file upload vulnerability in Prison Management System 1.0.
An authenticated user can upload a PHP file with arbitrary content by abusing the avatar upload
functionality in the add-admin.php endpoint. The application fails to properly validate the
uploaded file type, allowing an attacker to upload a PHP webshell. |
| required_action |
null |
| due_date |
null |
| notes |
Stability:
- crash-safe
Reliability:
- repeatable-session
SideEffects:
- ioc-in-logs
- artifacts-on-disk
|
| known_ransomware_campaign_use |
false |
| source_date_published |
2024-10-28 |
| exploit_type |
null |
| platform |
Linux,PHP,Unix |
| source_date_updated |
null |
| data_source |
Metasploit |
| source_url |
https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/linux/http/prison_management_rce.rb |
|
|
|---|
| Severity_range_score | 8.8 - 8.8 |
|---|
| Exploitability | null |
|---|
| Weighted_severity | null |
|---|
| Risk_score | null |
|---|
| Resource_url | http://public2.vulnerablecode.io/vulnerabilities/VCID-a7rv-rmpc-zkh4 |
|---|