CVE-2020-10507

Name of the Vulnerable Software and Affected Versions The School Manage System versions prior to 2020

Description The issue is related to an unrestricted file upload vulnerability, which allows attackers to gain access to the hosting machine. This is due to a misconfigured file upload filter that permits the upload of any file format to the system.

Recommendations For versions prior to 2020, consider disabling the file upload feature until a proper fix is applied to prevent unrestricted file uploads. Restrict access to the file upload module to minimize the risk of exploitation. Avoid using the file upload functionality in the affected system until the issue is resolved.