Restaurant Management System 1.0 Arbitrary File Upload

    Disclosure date: 10/24/19

    CVE-2019-18417

    Restaurant Management System 1.0 is affected by a vulnerability which allows an authenticated attacker to upload arbitrary files which can result in code execution. The issue occurs because the application fails to adequately sanitize user-supplied input.

    From the Add a New Food page, we browse to our reverse shell:






    When we choose add, we see our new addition:





    With our handler setup, we catch our reverse shell:



    © 2020 sevenlayers.com