CVE

CVE-2022-39179

admin

CVE-2022-39179

College Management System v1.0 – Authenticated remote code execution. An admin user (the authentication can be bypassed using SQL Injection that mentioned in my other report) can upload .php file that contains malicious code via student.php file.

Source: CVE-2022-39179

Exit mobile version