Lucene search
K

4 matches found

NVD
NVD
added 2025/01/07 8:15 p.m.9 views

CVE-2022-41573

An issue was discovered in Ovidentia 8.3. The file upload feature does not prevent the uploading of executable files. A user can upload a .png file containing PHP code and then rename it to have the .php extension. It will then be accessible at an images/common/ URI for remote code execution...

9.8CVSS0.01191EPSS
Exploits0References3
Circl
Circl
added 2025/01/07 7:33 p.m.7 views

CVE-2022-41573

creationtimestamp| type| source ---|---|--- 2025-01-07 19:33:15+00:00| seen| https://infosec.exchange/users/cve/statuses/113788740810947173 2025-01-07 19:37:33+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/532 2025-01-07 20:15:43+00:00| seen|...

9.8CVSS5.8AI score0.01191EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/01/07 12:0 a.m.6 views

CVE-2022-41573

An issue was discovered in Ovidentia 8.3. The file upload feature does not prevent the uploading of executable files. A user can upload a .png file containing PHP code and then rename it to have the .php extension. It will then be accessible at an images/common/ URI for remote code execution...

8.1AI score0.01191EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/01/07 12:0 a.m.96 views

CVE-2022-41573

An issue was discovered in Ovidentia 8.3. The file upload feature does not prevent the uploading of executable files. A user can upload a .png file containing PHP code and then rename it to have the .php extension. It will then be accessible at an images/common/ URI for remote code execution...

0.01191EPSS
Exploits0References3
Rows per page
Query Builder