2 matches found
CVE-2022-2749 SourceCodester Gym Management System unrestricted upload
A vulnerability was found in SourceCodester Gym Management System. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /mygym/admin/index.php?viewexercises. The manipulation leads to unrestricted upload. The attack can be launched remotely. The...
CVE-2022-2749
CVE-2022-2749 affects SourceCodester Gym Management System. Affected component: /mygym/admin/index.php?view_exercises. Root cause: manipulation leads to unrestricted file upload. Impact: allows remote attacker to upload arbitrary files; described as critical with HIGH base score in NVD metrics. E...