Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-54289
HistoryJun 09, 2022 - 12:00 a.m.

Wedding Management System Arbitrary File Upload Vulnerability (CNVD-2022-54289)

2022-06-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
19
arbitrary file upload
validation
image upload
remote code execution
cnvd-2022-54289

EPSS

0.001

Percentile

42.9%

JSON

Wedding Management System v1.0 is an arbitrary file upload vulnerability in the package_edit.php page, which is caused by a lack of validation of the image upload port on the package_edit.php page. The vulnerability is caused by the lack of validation of uploaded files on the package_edit.php page, which can be exploited to upload malicious files and remotely execute arbitrary code.

Related

nvd 1
cvelist 1
prion 1
cve 1
nvd
nvd
CVE-2022-30821
2022-06-02 14:15:55
cvelist
cvelist
CVE-2022-30821
2022-05-31 17:37:25
prion
prion
Privilege escalation
2022-06-02 14:15:00
cve
cve
CVE-2022-30821
2022-06-02 14:15:55

EPSS

0.001

Percentile

42.9%

JSON
Related for CNVD-2022-54289
nvd1cvelist1prion1cve1