Sourcecodester Doctor's Appointment System 1.0 is vulnerable to File Upload to RCE via Image upload from the administrator panel. An attacker can obtain remote command execution just by knowing the path where the images are stored.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-05-04T14:32:16
Updated: 2024-08-03T05:56:15.718Z
Reserved: 2022-04-04T00:00:00
Link: CVE-2022-28568
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-05-04T15:15:13.040
Modified: 2024-11-21T06:57:31.207
Link: CVE-2022-28568
Redhat
No data.