VulDBCVELIST:CVE-2022-1837CVE-2022-1837 Home Clean Services Management System unrestricted upload
4.7 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
7.4 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
47.3%
A vulnerability was found in Home Clean Services Management System 1.0. It has been rated as critical. Affected by this issue is register.php?link=registerand. The manipulation with the input <?php phpinfo();?> leads to code execution. The attack may be launched remotely but demands an authentication. Exploit details have been disclosed to the public.
CNA Affected
[
{
"product": "Home Clean Services Management System",
"vendor": "unspecified",
"versions": [
{
"status": "affected",
"version": "1.0"
}
]
}
]Related
4.7 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
7.4 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
47.3%