Lier

Name of the Vulnerable Software and Affected Versions Cyber-III Student-Management-System versions up to 1a938fa61e9f735078e9b291d2e6215b4942af3f Description A flaw exists in the function `move uploaded file` within the file `/AssignmentSection/submission/upload.php`. Manipulation of the `File` argument allows for unrestricted file uploads. This attack can be initiated remotely. The exploit has been made public. Recommendations Update to a version beyond 1a938fa61e9f735078e9b291d2e6215b4942af3f.