CVE-2024-57169 Information

Description

A file upload bypass vulnerability exists in SOPlanning 1.53.00 specifically in /process/upload.php. This vulnerability allows remote attackers to bypass upload restrictions and potentially achieve remote code execution by uploading malicious files.

Reference

https://themcsam.github.io/posts/so-planing-vulnerabilities/#arbitrary-file-upload-leading-to-rce