Full title: GUnet OpenEclass E-learning 3.15 File Upload / Command Execution Exploit 
Category: web applications
Platform: php
GUnet OpenEclass E-learning platform version 3.15 suffers from an unrestricted file upload vulnerability in certbadge.php that allows for remote command execution.

# 0day.today @ http://0day.today/