Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

CNNVD
CNNVDadded 2022/10/28 12:0 a.m.1 views

Canteen Management System 代码问题漏洞

Canteen Management System is a cafeteria management system by Mayuri K. Individual developer. Canteen Management System version 1.0 has a code issue vulnerability that originates from /youthappam/phpaction/editProductImage.php which is vulnerable to arbitrary file uploads...

7.2CVSS7.3AI score0.00991EPSS
Exploits1References3
OSV
OSVadded 2022/10/18 2:15 p.m.1 views

CVE-2022-41504

An arbitrary file upload vulnerability in the component /phpaction/editProductImage.php of Billing System Project v1.0 allows attackers to execute arbitrary code via a crafted PHP file...

7.2CVSS6AI score
Exploits0References1
CVE
CVEadded 2022/10/18 12:0 a.m.49 views

CVE-2022-41504

CVE-2022-41504 is an arbitrary file upload vulnerability in the Billing System Project v1.0, specifically in the /php_action/editProductImage.php component. The issue allows an attacker to upload a crafted PHP file and achieve arbitrary code execution. The CVSS score is High (7.2) with network at...

7.2CVSS7.3AI score0.00991EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2022/10/13 12:0 a.m.59 views

CVE-2022-41533

The CVE-2022-41533 entry concerns Online Diagnostic Lab Management System v1.0, with an arbitrary file upload vulnerability in the /php_action/editProductImage.php component that enables arbitrary PHP code execution. Affected software is explicitly stated as Online Diagnostic Lab Management Syste...

7.2CVSS7.3AI score0.00991EPSS
Exploits1References1Affected Software1
NVD
NVDadded 2022/06/02 2:15 p.m.6 views

CVE-2022-30795

Online Ordering System v1.0 by oretnom23 is vulnerable to SQL Injection via admin/editproductimage.php...

7.2CVSS0.00274EPSS
Exploits1References1
CVE
CVEadded 2022/05/31 3:8 p.m.67 views

CVE-2022-30795

Online Ordering System v1.0 by oretnom23 is vulnerable to SQL Injection in admin/editproductimage.php. The root cause is lack of input validation on that endpoint, enabling an attacker to manipulate SQL queries and potentially access or modify database data. CVSS metrics in the initial entry indi...

7.2CVSS7.3AI score0.00274EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2022/05/31 3:8 p.m.8 views

CVE-2022-30795

Online Ordering System v1.0 by oretnom23 is vulnerable to SQL Injection via admin/editproductimage.php...

7.6AI score0.00274EPSS
Exploits1References1
NVD
NVDadded 2022/05/20 1:15 p.m.11 views

CVE-2022-30887

Pharmacy Management System v1.0 was discovered to contain a remote code execution RCE vulnerability via the component /phpaction/editProductImage.php. This vulnerability allows attackers to execute arbitrary code via a crafted image file...

9.8CVSS0.05226EPSS
Exploits2References1
CVE
CVEadded 2022/05/20 12:53 p.m.74 views

CVE-2022-30887

Pharmacy Management System v1.0 contains a remote code execution (RCE) via /php_action/editProductImage.php when handling a crafted image file. Affected component is the editProductImage.php upload logic, enabling arbitrary code execution on the server. The issue is evidenced by related Red Hat/C...

9.8CVSS9.8AI score0.05226EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder