3 matches found
CVE-2022-44280
Automotive Shop Management System v1.0 is vulnerable to Delete any file via /asms/classes/Master.php?f=deleteimg...
CVE-2022-44280
Automotive Shop Management System v1.0 is vulnerable to Delete any file via /asms/classes/Master.php?f=deleteimg...
CVE-2022-44280
Automotive Shop Management System v1.0 is affected by an endpoint vulnerability: an attacker can delete arbitrary files via /asms/classes/Master.php?f=delete_img. The connected records confirm the affected product and the exact API parameter, with potential high impact on integrity and availabili...