PT-2024-15375 · Unknown · Rrj Nueva Ecija Engineer Online Portal
Ahmed8199
·
Published
2024-01-02
·
Updated
2024-05-17
·
CVE-2024-0191
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
RRJ Nueva Ecija Engineer Online Portal version 1.0
Description
A vulnerability was found in the RRJ Nueva Ecija Engineer Online Portal, which has been classified as problematic. The issue affects an unknown function of the file /admin/uploads/. This manipulation leads to file and directory information exposure. It is possible to launch the attack remotely.
Recommendations
For RRJ Nueva Ecija Engineer Online Portal version 1.0, consider restricting access to the /admin/uploads/ directory to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Rrj Nueva Ecija Engineer Online Portal