cve/2023/CVE-2023-0943.md

CVE-2023-0943

Description

A vulnerability, which was classified as problematic, has been found in SourceCodester Best POS Management System 1.0. This issue affects the function save_settings of the file index.php?page=site_settings of the component Image Handler. The manipulation of the argument img with the input ../../shell.php leads to unrestricted upload. The attack may be initiated remotely. The associated identifier of this vulnerability is VDB-221591.

POC

Reference

• https://vuldb.com/?id.221591

Github

• https://github.com/fkie-cad/nvd-json-data-feeds