CVE-2023-24317 β€” Unrestricted File Upload in Management System Project Judging Management System

CWE-434 β€” Unrestricted File Upload3 documents3 sources
Severity
8.1HIGHNVD
EPSS
9.1%
top 7.33%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Judging Management System Project Judging Management System
Timeline
PublishedFeb 23

Description

Judging Management System 1.0 was discovered to contain an arbitrary file upload vulnerability via the component edit_organizer.php.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:NExploitability: 2.8 | Impact: 5.2

Affected Packages1 packages

πŸ”΄Vulnerability Details

2
CVEList
CVE-2023-24317: Judging Management System 1β†—2023-02-23
β–Ά
GHSA
GHSA-3q5v-jr96-99g5: Judging Management System 1β†—2023-02-23
β–Ά
CVE-2023-24317 β€” Unrestricted File Upload | cvebase