CVE-2022-4232
MEDIUMSourceCodester Event Registration System 1.0 - Unrestricted File Upload via cmd Argument
Title source: llmDescription
A vulnerability, which was classified as critical, was found in SourceCodester Event Registration System 1.0. Affected is an unknown function. The manipulation of the argument cmd leads to unrestricted upload. It is possible to launch the attack remotely. VDB-214590 is the identifier assigned to this vulnerability.
References (1)
Core 1
Core References
Third Party Advisory
https://vuldb.com/?id.214590
Scores
CVSS v3
4.7
EPSS
0.0044
EPSS Percentile
34.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
Details
CWE
CWE-266
CWE-434
Status
published
Products (1)
rinvizle/event_registration_system
1.0
Published
Nov 30, 2022
Tracked Since
Feb 18, 2026