CyberSec.Space Logo
Back to CVE Browser

CVE-2021-26809

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1700%
EPSS Percentile6.78th
PublishedFeb 17, 2021
Last ModifiedNov 21, 2024

Vulnerability Description

PHPGurukul Car Rental Project version 2.0 suffers from a remote shell upload vulnerability in changeimage1.php.

Affected Platforms (CPE)

πŸ“¦
Phpgurukul

Car Rental Portal

= 2.0

References & Advisories

πŸ”— https://packetstormsecurity.com/files/161267/Car-Rental-Project-2.0-Shell-Upload.html
πŸ”— https://www.exploit-db.com/exploits/49520
πŸ”— https://packetstormsecurity.com/files/161267/Car-Rental-Project-2.0-Shell-Upload.html
πŸ”— https://www.exploit-db.com/exploits/49520

Related Vulnerabilities

CVE-2021-2132210.0

fastify-http-proxy is an npm package which is a fastify plugin for proxying your http requests to another server, with hooks. By c...

CVE-2021-2132110.0

fastify-reply-from is an npm package which is a fastify plugin to forward the current http request to another server. In fastify-r...

CVE-2021-2732910.0

Friendica 2021.01 allows SSRF via parse_url?binurl= for DNS lookups or HTTP requests to arbitrary domain names.

CVE-2021-217710.0

Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization (component: Gateway). The supported version tha...