PT-2020-15586 · Sourcecodester · Sourcecodester Online Course Registration

Published

2020-09-15

Updated

2020-09-21

CVE-2020-23828

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions SourceCodester Online Course Registration version 1.0

Description A File Upload issue allows remote attackers to achieve Remote Code Execution (RCE) on the hosting webserver by uploading a crafted PHP web-shell that bypasses the image upload filters. An attack uses the "my-profile.php" endpoint with the photo parameter.

Recommendations For version 1.0, consider disabling the file upload feature or restricting the types of files that can be uploaded to prevent exploitation until a fix is available. Restrict access to the "my-profile.php" endpoint to minimize the risk of exploitation. Avoid using the photo parameter in the affected endpoint until the issue is resolved.

Exploit

Fix

Unrestricted File Upload

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-434

Related Identifiers

CVE-2020-23828

Affected Products

Sourcecodester Online Course Registration

PT-2020-15586 · Sourcecodester · Sourcecodester Online Course Registration

CVE-2020-23828

Weakness Enumeration

Related Identifiers

Affected Products

References · 4