SourceCodester Company Website CMS unrestricted upload
CVE-2022-2694

6.3MEDIUM

Key Information:

Vendor
Sourcecodester
Status
Company Website Cms
Vendor
CVE Published:
6 August 2022

Summary

A vulnerability was found in SourceCodester Company Website CMS and classified as critical. This issue affects some unknown processing. The manipulation leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-205817 was assigned to this vulnerability.

Affected Version(s)

Company Website CMS

References

https://github.com/Jamison2022/Company-Website-CMS/blob/m...
x_refsource_MISC
https://vuldb.com/?id.205817
x_refsource_MISC

CVSS V3.1

Score:
6.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.