Security Advisory

CVE-2023-5185

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-09-28 20:52:35

Last updated 2024-09-23 18:57:19

Assigner Fluid Attacks

State PUBLISHED

Description

Gym Management System Project v1.0 is vulnerable to an Insecure File Upload vulnerability on the file parameter of profile/i.php page, allowing an authenticated attacker to obtain Remote Code Execution on the server hosting the application.

← Browse all CVEs View on cve.org ↗