PT-2021-17143 · Unknown · Phpgurukul Car Rental Project
Published
2021-02-17
·
Updated
2023-11-14
·
CVE-2021-26809
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
PHPGurukul Car Rental Project version 2.0
Description
The issue is related to a remote shell upload vulnerability. This vulnerability is present in the changeimage1.php file, allowing for potential malicious activity.
Recommendations
For PHPGurukul Car Rental Project version 2.0, consider disabling access to the changeimage1.php file as a temporary workaround until a patch is available. Restricting the upload functionality in this file can also help minimize the risk of exploitation.
Exploit
Fix
Unrestricted File Upload
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Phpgurukul Car Rental Project