exploitDog

GHSA-4rhp-v69r-6w59

Опубликовано: 28 сент. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

In Exam Reviewer Management System 1.0, an authenticated attacker can upload a web-shell php file in profile page to achieve Remote Code Execution (RCE).

In Exam Reviewer Management System 1.0, an authenticated attacker can upload a web-shell php file in profile page to achieve Remote Code Execution (RCE).

Ссылки

EPSS

Процентиль: 91%

0.07218

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-434

Связанные уязвимости

CVE-2022-40878

CVSS3: 8.8

nvd

больше 3 лет назад

In Exam Reviewer Management System 1.0, an authenticated attacker can upload a web-shell php file in profile page to achieve Remote Code Execution (RCE).

EPSS

Процентиль: 91%

0.07218

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-434