2 matches found
CVE-2022-30408
Covid-19 Travel Pass Management System v1.0 is vulnerable to file deletion via /ctpms/classes/Master.php?f=deleteimg...
CVE-2022-30408
CVE-2022-30408 affects Covid-19 Travel Pass Management System v1.0. The root cause is missing file type validation in /ctpms/classes/Master.php?f=delete_img, allowing an attacker to delete arbitrary files. The issue is evidenced across multiple databases and security trackers (NVD, Red Hat, CNVD,...