CVE-2024-6439

Name of the Vulnerable Software and Affected Versions SourceCodester Home Owners Collection Management System version 1.0

Description A critical issue affects the processing of the file /classes/Users.php?f=save, allowing unrestricted upload through the manipulation of the img argument. This can be initiated remotely.

Recommendations For SourceCodester Home Owners Collection Management System version 1.0, as a temporary workaround, consider restricting access to the /classes/Users.php?f=save endpoint to minimize the risk of exploitation. Avoid using the img argument in this endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.