CVE-2020-37084

EUVD-2020-31018
School ERP Pro 1.0 contains a remote code execution vulnerability that allows authenticated admin users to upload arbitrary PHP files as profile photos by bypassing file extension checks. Attackers can exploit improper file validation in pre-editstudent.inc.php to execute arbitrary code on the server.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.2 HIGH
NETWORK
LOW
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 52%
Affected Products (NVD)
VendorProductVersion
aroxschool_erp_pro
1.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://web.archive.org/web/20190612111732/https://sourceforge.net/projects/school-erp-ultimate/
https://web.archive.org/web/20200129123503/http://arox.in/
https://www.exploit-db.com/exploits/48392
https://www.vulncheck.com/advisories/school-erp-pro-admin-profile-photo-upload-remote-code-execution-vulnerability