CVE-2023-1826 | SourceCodester Online Computer and Laptop Store index.php unrestricted upload
Exp
A vulnerability, which was classified as critical, was found in SourceCodester Online Computer and Laptop Store 1.0. This affects an unknown part of the file php-ocls\admin\system_info\index.php. The manipulation of the argument img leads to unrestricted upload. It is possible to initiate the attack remotely. The identifier VDB-224841 was assigned to this vulnerability.
Conclusion & alert: CVE-2023-1826 is rated High Exploit Risk (72.1/100): CVSS Medium severity, with medium exploitation likelihood (EPSS 4.35%).Core evidence: 2 public exploit reference(s) are indexed (Exploit-DB).Mandatory action: Public exploits are available—assess exposure, apply mitigations, and prioritize patching.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
Public exploit references (Exploit-DB) for CVE-2023-1826
Exploit prediction scoring system (EPSS) score for CVE-2023-1826
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).