CVE-2024-7277

Severity CVSS v4.0:
MEDIUM
Type:
CWE-434 Unrestricted Upload of File with Dangerous Type
Publication date:
31/07/2024
Last modified:
14/05/2025

Description

A vulnerability was found in itsourcecode Alton Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/menu.php of the component Add a Menu. The manipulation of the argument image leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-273146 is the identifier assigned to this vulnerability.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:adonesevangelista:restaurant_management_system:1.0:*:*:*:*:*:*:*