Unrated severityNVD Advisory· Published Mar 18, 2023· Updated Aug 2, 2024

SourceCodester Simple Music Player save_music.php unrestricted upload

CVE-2023-1479

Description

A vulnerability classified as critical has been found in SourceCodester Simple Music Player 1.0. Affected is an unknown function of the file save_music.php. The manipulation of the argument filename leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-223362 is the identifier assigned to this vulnerability.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Sourcecodester/Simple Music Playerllm-create
Range: = 1.0
SourceCodester/Simple Music Playerv5
Range: 1.0

Patches

Vulnerability mechanics

References

github.com/xyaly163/bug_report/blob/main/UPLOAD.mdmitreexploit
vuldb.commitresignaturepermissions-required
vuldb.commitrevdb-entrytechnical-description

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000