Exam Reviewer Management System Project Exam Reviewer Management System vulnerabilities
2 known vulnerabilities affecting exam_reviewer_management_system_project/exam_reviewer_management_system.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2022-40878P2HIGHCVSS 8.8v1.02022-09-27
CVE-2022-40878 [HIGH] CWE-434 CVE-2022-40878: In Exam Reviewer Management System 1.0, an authenticated attacker can upload a web-shell php file in
In Exam Reviewer Management System 1.0, an authenticated attacker can upload a web-shell php file in profile page to achieve Remote Code Execution (RCE).
nvd
CVE-2022-40877P3CRITICALCVSS 9.8v1.02022-09-27
CVE-2022-40877 [CRITICAL] CWE-89 CVE-2022-40877: Exam Reviewer Management System 1.0 is vulnerable to SQL Injection via the ‘id’ parameter.
Exam Reviewer Management System 1.0 is vulnerable to SQL Injection via the ‘id’ parameter.
nvd