exploitDog

GHSA-wfh4-6hvv-x93x

Опубликовано: 31 окт. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Remote Code Execution in Clinic's Patient Management System v 1.0 allows Attacker to Upload arbitrary php webshell via profile picture upload functionality in users.php

Remote Code Execution in Clinic's Patient Management System v 1.0 allows Attacker to Upload arbitrary php webshell via profile picture upload functionality in users.php

Ссылки

EPSS

Процентиль: 100%

0.90269

Критический

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-434

Связанные уязвимости

CVE-2022-40471

CVSS3: 9.8

nvd

больше 3 лет назад

Remote Code Execution in Clinic's Patient Management System v 1.0 allows Attacker to Upload arbitrary php webshell via profile picture upload functionality in users.php

EPSS

Процентиль: 100%

0.90269

Критический

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-434