← volver
CVE-2022-4232

SourceCodester Event Registration System unrestricted upload

CVSS 4.7 MEDIUMEPSS 0.4%CWE-266
Vexday Risk Score
13Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 4.7EPSS 0.4%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
30 nov 2022Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
A vulnerability, which was classified as critical, was found in SourceCodester Event Registration System 1.0. Affected is an unknown function. The manipulation of the argument cmd leads to unrestricted upload. It is possible to launch the attack remotely. VDB-214590 is the identifier assigned to this vulnerability.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
Productos afectados
SourceCodester · Event Registration System

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://vuldb.com/?id.214590