jinhaochan/CVE-POC

jinhaochan/CVE-POC

Unavailable

This project is no longer available (or publicly accessible) from GitHub

Releases0

POCs of CVEs

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-32256 ↗	Apr 16, 2024Tuesday, 16 April 2024, 17:15	8.1 HIGH	—
Phpgurukul Tourism Management System v2.0 is vulnerable to Unrestricted Upload of File with Dangerous Type via /tms/admin/change-image.php. When updating a current package, there are no checks for what types of files are uploaded from the image.
CVE-2024-32254 ↗	Apr 16, 2024Tuesday, 16 April 2024, 17:15	8.8 HIGH	—
Phpgurukul Tourism Management System v2.0 is vulnerable to Unrestricted Upload of File with Dangerous Type via tms/admin/create-package.php. When creating a new package, there is no checks for what types of files are uploaded from the image.