Lucene search
China National Vulnerability DatabaseCNVD-2022-68366HistorySep 29, 2022 - 12:00 a.m.
Simple Exam Reviewer Management System Arbitrary File Upload Vulnerability
2022-09-2900:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
vulnerability
file upload
authentication
remote execution
EPSS
0.012
Percentile
85.6%
Simple Exam Reviewer Management System is a simple examiner management system. version 1.0 of Simple Exam Reviewer Management System is vulnerable to arbitrary file uploads, which stem from the lack of valid authentication of uploaded files on the configuration file page. An authenticated attacker could exploit this vulnerability to upload malicious files and remotely execute arbitrary code.
Related
cvelist
cvelist
CVE-2022-40878
2022-09-27 16:01:40
cve
cve
CVE-2022-40878
2022-09-27 23:15:16
prion
prion
Remote code execution
2022-09-27 23:15:00
nvd
nvd
CVE-2022-40878
2022-09-27 23:15:16
checkpoint_advisories
checkpoint_advisories
Exam Reviewer Management System Arbitrary File Upload (CVE-2022-40878)
2022-11-23 00:00:00