CVE-2022-43146

Опубликовано: 14 нояб. 2022

Источник: nvd

CVSS3: 7.2

EPSS Низкий

Описание

An arbitrary file upload vulnerability in the image upload function of Canteen Management System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.

Ссылки

https://medium.com/%40syedmudassiruddinalvi/cve-2022-43146-rce-via-arbitrary-file-upload-28dfa77c5de7
https://www.sourcecodester.com/php/15688/canteen-management-system-project-source-code-php.html
Product
https://medium.com/%40syedmudassiruddinalvi/cve-2022-43146-rce-via-arbitrary-file-upload-28dfa77c5de7
https://www.sourcecodester.com/php/15688/canteen-management-system-project-source-code-php.html
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:canteen_management_system_project:canteen_management_system:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 75%

0.0086

Низкий

7.2 High

CVSS3

Дефекты

CWE-434

Связанные уязвимости

GHSA-c8rr-vr4h-5x87