Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-86395
HistoryNov 24, 2022 - 12:00 a.m.

asith-eranga ISIC arbitrary file upload vulnerability

2022-11-2400:00:00
China National Vulnerability Database
www.cnvd.org.cn
15
asith-eranga
isic
arbitrary file upload
vulnerability
web backend
individual developers
tour booking
remote code execution

EPSS

0.001

Percentile

42.9%

JSON

ISIC is a web backend for asith-eranga individual developers. asith-eranga ISIC tour booking 2018.02.13 and earlier versions are vulnerable to arbitrary file uploads. The vulnerability stems from a lack of valid validation of uploaded files. An attacker could exploit the vulnerability to upload malicious files to remotely execute arbitrary code.

Related

cve 1
prion 1
cvelist 1
nvd 1
cve
cve
CVE-2022-30529
2022-11-22 01:15:12
prion
prion
Unrestricted file upload
2022-11-22 01:15:00
cvelist
cvelist
CVE-2022-30529
2022-11-22 00:00:00
nvd
nvd
CVE-2022-30529
2022-11-22 01:15:12

EPSS

0.001

Percentile

42.9%

JSON
Related for CNVD-2022-86395
cve1prion1cvelist1nvd1