Nixon-H/PHP-Unrestricted-Upload-RCE
GitHub
Releases0
Stars1
A Critical (CVSS 10.0) RCE vulnerability in a PHP e-commerce platform. The app trusts client-side MIME types and preserves extensions during upload. Attackers can bypass checks to upload web shells, gaining full system access (www-data). Includes PoC for bypassing validation via curl
Subscribe above to receive notifications when new versions are released.
| Version | Date | Stability Stability is determined by the version string and my be inaccurate. |
|---|
PreviousNext