2024-01-04 14:24:34
Fluid Attacks
PUBLISHED
Online Notice Board System v1.0 is vulnerable to an Insecure File Upload vulnerability on the f parameter of user/update_profile_pic.php page, allowing an authenticated attacker to obtain Remote Code Execution on the server hosting the application.