exploitDog

CVE-2022-44280

Опубликовано: 23 нояб. 2022

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

Automotive Shop Management System v1.0 is vulnerable to Delete any file via /asms/classes/Master.php?f=delete_img.

Ссылки

https://github.com/Onetpaer/bug_report/blob/main/vendors/oretnom23/automotive-shop-management-system/delete-1.md
Exploit
Third Party Advisory
https://github.com/Onetpaer/bug_report/blob/main/vendors/oretnom23/automotive-shop-management-system/delete-1.md
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:automotive_shop_management_system_project:automotive_shop_management_system:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 61%

0.0041

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-22

CWE-22

Связанные уязвимости

GHSA-fm8r-8cvr-58v5

CVSS3: 6.5

github

около 3 лет назад

Automotive Shop Management System v1.0 is vulnerable to Delete any file via /asms/classes/Master.php?f=delete_img.

EPSS

Процентиль: 61%

0.0041

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-22

CWE-22