A vulnerability, which was classified as critical, was found in itsourcecode Laravel Accounting System 1.0. This affects an unknown part of the file app/Http/Controllers/HomeController.php. The manipulation of the argument image leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-273621 was assigned to this vulnerability.
History

Mon, 19 Aug 2024 17:30:00 +0000

Type Values Removed Values Added
First Time appeared Itsourcecode
Itsourcecode laravel Accounting System
CPEs cpe:2.3:a:itsourcecode:laravel_accounting_system:1.0:*:*:*:*:*:*:*
Vendors & Products Itsourcecode
Itsourcecode laravel Accounting System

Wed, 07 Aug 2024 21:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2024-08-06T01:00:10.350Z

Updated: 2024-08-07T20:46:35.885Z

Reserved: 2024-08-05T15:39:09.871Z

Link: CVE-2024-7495

cve-icon Vulnrichment

Updated: 2024-08-07T20:46:29.054Z

cve-icon NVD

Status : Analyzed

Published: 2024-08-06T01:15:43.583

Modified: 2024-08-19T17:10:27.693

Link: CVE-2024-7495

cve-icon Redhat

No data.