CVE-2023-5829 – code-projects Admission Management System student_avatar.php unrestricted upload

https://notcve.org/view.php?id=CVE-2023-5829

27 Oct 2023 — A vulnerability was found in code-projects Admission Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file student_avatar.php. The manipulation leads to unrestricted upload. The attack may be launched remotely. • https://github.com/lxxcute/Bug/blob/main/Admission%20Management%20System%20has%20a%20file%20upload%20(RCE)%20vulnerability.pdf • CWE-434: Unrestricted Upload of File with Dangerous Type •