3 matches found
CVE-2022-38877
Garage Management System v1.0 is vulnerable to Arbitrary code execution via ip/garage/phpaction/editProductImage.php?id=1...
CVE-2022-38877
Garage Management System v1.0 is vulnerable to Arbitrary code execution via ip/garage/phpaction/editProductImage.php?id=1...
CVE-2022-38877
Garage Management System v1.0 is affected by arbitrary code execution via the endpoint ip/garage/php_action/editProductImage.php?id=1. The issue stems from manipulating the id parameter exposed by that endpoint, allowing remote attackers to execute code. Exploitation details are present in multip...