CVE-2022-4232
MEDIUMRinvizle Event Registration System - Unrestricted File Upload
Title source: ruleDescription
A vulnerability, which was classified as critical, was found in SourceCodester Event Registration System 1.0. Affected is an unknown function. The manipulation of the argument cmd leads to unrestricted upload. It is possible to launch the attack remotely. VDB-214590 is the identifier assigned to this vulnerability.
References (1)
Core 1
Core References
Third Party Advisory
https://vuldb.com/?id.214590
Scores
CVSS v3
4.7
EPSS
0.0032
EPSS Percentile
54.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
Details
CWE
CWE-266
CWE-434
Status
published
Products (1)
rinvizle/event_registration_system
1.0
Published
Nov 30, 2022
Tracked Since
Feb 18, 2026