Описание
A vulnerability, which was classified as critical, was found in SourceCodester Event Registration System 1.0. Affected is an unknown function. The manipulation of the argument cmd leads to unrestricted upload. It is possible to launch the attack remotely. VDB-214590 is the identifier assigned to this vulnerability.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:rinvizle:event_registration_system:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 54%
0.00315
Низкий
4.7 Medium
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-266
CWE-434
Связанные уязвимости
CVSS3: 9.8
github
около 3 лет назад
A vulnerability, which was classified as critical, was found in SourceCodester Event Registration System 1.0. Affected is an unknown function. The manipulation of the argument cmd leads to unrestricted upload. It is possible to launch the attack remotely. VDB-214590 is the identifier assigned to this vulnerability.
EPSS
Процентиль: 54%
0.00315
Низкий
4.7 Medium
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-266
CWE-434