PT-2024-16149 · Sourcecodester · Sourcecodester Facebook News Feed Like
Thesorcererkingainz
·
Published
2024-01-30
·
Updated
2024-05-17
·
CVE-2024-1027
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
SourceCodester Facebook News Feed Like version 1.0
Description
A critical issue was found in the Post Handler component, allowing for unrestricted upload. This can be exploited remotely.
Recommendations
For version 1.0, consider disabling the Post Handler component until a patch is available to prevent unrestricted upload. Restrict access to the affected component to minimize the risk of exploitation. Avoid using the vulnerable function of the Post Handler component until the issue is resolved.
Fix
Unrestricted File Upload
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sourcecodester Facebook News Feed Like