Unrated severityNVD Advisory· Published Apr 6, 2024· Updated Aug 1, 2024
code-projects Car Rental add-vehicle.php unrestricted upload
CVE-2024-3369
Description
A vulnerability, which was classified as critical, has been found in code-projects Car Rental 1.0. Affected by this issue is some unknown functionality of the file add-vehicle.php. The manipulation of the argument Upload Image leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-259490 is the identifier assigned to this vulnerability.
Affected products
2- Range: =1.0
- code-projects/Car Rentalv5Range: 1.0
Patches
Vulnerability mechanics
References
4- drive.google.com/file/d/1wLMnGzcbyCoZ_Wp-bHpLD49MZ9-XHPUK/viewmitreexploit
- vuldb.commitrethird-party-advisory
- vuldb.commitresignaturepermissions-required
- vuldb.commitrevdb-entrytechnical-description
News mentions
0No linked articles in our index yet.