CVE-2023-1734
published 2023-03-30CVE-2023-1734: A vulnerability classified as critical has been found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. Affected is an unknown function of the file…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
A vulnerability classified as critical has been found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. Affected is an unknown function of the file admin/products/controller.php?action=add. The manipulation of the argument image leads to unrestricted upload. It is possible to launch the attack remotely. VDB-224622 is the identifier assigned to this vulnerability.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sourcecodester | young_entrepreneur_e-negosyo_system | — | — |
| young_entrepreneur_e-negosyo_system_project | young_entrepreneur_e-negosyo_system | — | — |