VYPR
Unrated severityNVD Advisory· Published Oct 24, 2019· Updated Aug 5, 2024

CVE-2019-18417

CVE-2019-18417

Description

Sourcecodester Restaurant Management System 1.0 allows an authenticated attacker to upload arbitrary files that can result in code execution. The issue occurs because the application fails to adequately sanitize user-supplied input, e.g., "add a new food" allows .php files.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.