Headline
CVE-2023-4122: Student Information System v1.0 - Insecure File Upload | Advisories | Fluid Attacks
Student Information System v1.0 is vulnerable to an Insecure File Upload vulnerability on the ‘photo’ parameter of my-profile page, allowing an authenticated attacker to obtain Remote Code Execution on the server hosting the application.
Hacking software for over 20 years
Fluid Attacks tests applications and other systems, covering all software development stages. Our team assists clients in quickly identifying and managing vulnerabilities to reduce the risk of incidents and deploy secure technology.