1 results (0.003 seconds)
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-2024-33294
https://notcve.org/view.php?id=CVE-2024-33294
06 May 2024 — An issue in Library System using PHP/MySQli with Source Code V1.0 allows a remote attacker to execute arbitrary code via the _FAILE variable in the student_edit_photo.php component. Un problema en el sistema de librería que usa PHP/MySQli con Source Code V1.0 permite a un atacante remoto ejecutar código arbitrario a través de la variable _FAILE en el componente Student_edit_photo.php. • https://github.com/CveSecLook/cve/issues/16 • CWE-94: Improper Control of Generation of Code ('Code Injection') •