CVE-2022-40932

7.2HIGH

Key Information:

Vendor: PHPgurukul
Status: Zoo Management System
Vendor: CVE Published:; 22 September 2022

Summary

In Zoo Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of the "gallery" file of the "Gallery" module in the background management system.

References

https://github.com/lime-10010/Bug_report/blob/main/vendor...

x_refsource_MISC

CVSS V3.1

Score:

7.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 22, 2022
Vulnerability Reserved
Sep 19, 2022

Collectors

NVD DatabaseMitre Database