CVE-2020-24199

Published
View on NVD ↗
CVSS v3
9.8
CRITICAL
CVSS v2
7.5
HIGH
Affected
1
PROJECT

Description

Arbitrary File Upload in the Vehicle Image Upload component in Project Worlds Car Rental Management System v1.0 allows attackers to conduct remote code execution.

hyd3sec/CarRentalManagement-Unauth-RCE-WebApp
hyd3sec/CarRentalManagement-Unauth-RCE-WebApp
Car Rental Management System Unauthorized RCE Exploit - Built by hyd3sec
GitHubGitHub
7