VulDBCVELIST:CVE-2022-4232CVE-2022-4232 SourceCodester Event Registration System unrestricted upload
4.7 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
9.8 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
58.4%
A vulnerability, which was classified as critical, was found in SourceCodester Event Registration System 1.0. Affected is an unknown function. The manipulation of the argument cmd leads to unrestricted upload. It is possible to launch the attack remotely. VDB-214590 is the identifier assigned to this vulnerability.
CNA Affected
[
{
"vendor": "SourceCodester",
"product": "Event Registration System",
"versions": [
{
"version": "1.0",
"status": "affected"
}
]
}
]References
Related
4.7 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
9.8 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
58.4%