4 matches found
Exam Reviewer Management System Arbitrary File Upload (CVE-2022-40878)
An arbitrary file upload vulnerability exists in Exam Reviewer Management System. Successful exploitation of this vulnerability allows an attacker to execute arbitrary code on the vulnerable system with administrative privileges...
CVE-2022-40878
In Exam Reviewer Management System 1.0, an authenticated attacker can upload a web-shell php file in profile page to achieve Remote Code Execution RCE...
CVE-2022-40878
In Exam Reviewer Management System 1.0, an authenticated attacker can upload a web-shell php file in profile page to achieve Remote Code Execution RCE...
CVE-2022-40878
CVE-2022-40878 affects the Exam Reviewer Management System 1.0. An authenticated attacker can upload a web-shell PHP file via the profile page, leading to Remote Code Execution (RCE) . The vulnerability arises from an insecure file-upload path on the profile page, enabling arbitrary code executio...