Full title: GUnet OpenEclass E-learning 3.15 File Upload / Command Execution Exploit Category: web applications Platform: php GUnet OpenEclass E-learning platform version 3.15 suffers from an unrestricted file upload vulnerability in certbadge.php that allows for remote command execution. # 0day.today @ http://0day.today/