cbcvebase.
CVE-2022-38323
published 2022-09-15

CVE-2022-38323: Event Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /Royal_Event/update_image.php. This…

PriorityP338high7.2CVSS 3.1
AVNACLPRHUINSUCHIHAH
EPSS
0.99%
58.1th percentile
Event Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /Royal_Event/update_image.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.

Affected

1 ranges
VendorProductVersion rangeFixed in
event_management_system_projectevent_management_system
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.