Online Student's Management System 1.0 Shell Upload

Online Student's Management System version 1.0 suffers from a remote shell upload vulnerability.

MD5 | d8d317865accc39f0ea9c31f5b1c18ab

# Exploit Title: Online Student's Management System 1.0 - Remote Code Execution (Authenticated)
# Google Dork: N/A
# Date: 2020/10/18
# Exploit Author: Akıner Kısa
# Vendor Homepage:
# Software Link:
# Version: 1.0
# Tested on: XAMPP
# CVE : N/A

Proof of Concept:

1 - Go to http://localhost/studentrecord/ url, click "click here to sign in" text and login with the 070101:070101 information.

2 - Then go to http: //localhost/studentrecord/my-profile.php and upload your shell file from the upload new photo section and click the update button.

3 - Finally, open your shell in http://localhost/studentrecord/staffphoto/shell.php

Related Posts