CVE-2024-4966

Name of the Vulnerable Software and Affected Versions SourceCodester SchoolWebTech version 1.0

Description A critical issue has been found, affecting an unknown function of the file /improve/home.php. The manipulation of the image argument leads to unrestricted upload. This issue can be exploited remotely.

Recommendations For SourceCodester SchoolWebTech version 1.0, consider restricting access to the /improve/home.php file to minimize the risk of exploitation. As a temporary workaround, avoid using the image argument in the affected function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.