GUnet OpenEclass E-learning 3.15 File Upload / Command Execution
Posted on 11 April 2024
GUnet OpenEclass E-learning platform version 3.15 suffers from an unrestricted file upload vulnerability in certbadge.php that allows for remote command execution.