Arbitrary File Upload Vulnerability in Student Enrollment In PHP
CVE-2023-41506
Currently unrated
What is CVE-2023-41506?
The vulnerability in the Student Enrollment In PHP version 1.0 relates to the Update/Edit Student's Profile Picture function, where an attacker can exploit the system by uploading a malicious PHP file. This allows unauthorized code execution, which can lead to potential compromise of the server and access to sensitive data. This security flaw necessitates immediate remediation to protect the integrity of the application and its users.