Learning-Management-System
This system also has a responsive design compatible with mobile devices.
Exploit Title:Learning Management System 1.0 —— Arbitrary file upload vulnerability
Vendor Homepage: https://www.sourcecodester.com/php/7339/learning-management-system.html
Software Link: https://www.sourcecodester.com/download-code?nid=7339&title=Online+Learning+Management+System+using+PHP%2FMySQLi+with+Source+Code
Vulnerability Type:
File upload
Vulnerability Version :
V 1.0
Recurring environment:
Windows 10
Vulnerability Description AND recurrence:
The vulnerability is in the \lms\student_avatar.php file


You can access our Webshell in the root directory

Exploit Title:Learning Management System 1.0 —— 'id' SQL Injection
Vendor Homepage: https://www.sourcecodester.com/php/7339/learning-management-system.html
Software Link: https://www.sourcecodester.com/download-code?nid=7339&title=Online+Learning+Management+System+using+PHP%2FMySQLi+with+Source+Code
Vulnerability Type:
SQL Injection
Vulnerability Version :
V 1.0
Recurring environment:
Windows 10
Vulnerability Description AND recurrence:
The vulnerability is in the \lms\admin\edit_class.php file

use SQLMAP


