CVE-2024-51208 | THREATINT

Description

File Upload vulnerability in change-image.php in Anuj Kumar's Boat Booking System version 1.0 allows local attackers to upload a malicious PHP script via the Image Upload Mechanism parameter.

PUBLISHED Reserved 2024-10-28 | Published 2024-11-20 | Updated 2025-03-13 | Assigner mitre

References

phpgurukul.com/boat-booking-system-using-php-and-mysql/

gist.github.com/Esquirez/985db6c65219a3e5a6521e291524aaa0

cve.org (CVE-2024-51208)

nvd.nist.gov (CVE-2024-51208)

Download JSON