CVE-2024-46377 — Unrestricted File Upload in Best House Rental Management System

CWE-434 — Unrestricted File Upload3 documents3 sources

Severity

9.8CRITICALNVD

EPSS

22.1%

top 4.20%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mayurik Best House Rental Management System

Timeline

PublishedSep 18

Description

Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the save_settings() function of the file rental/admin_class.php.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

▶NVDmayurik/best_house_rental_management_system1.0

🔴Vulnerability Details

GHSA

GHSA-94r8-x6vr-vvc4: Best House Rental Management System 1↗2024-09-18

▶

CVEList

CVE-2024-46377: Best House Rental Management System 1↗2024-09-18

▶