Sourcecodester Doctor's Appointment System 1.0 is vulnerable to File Upload to RCE via Image upload from the administrator panel. An attacker can obtain remote command execution just by knowing the path where the images are stored.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2022-05-04T14:32:16

Updated: 2024-08-03T05:56:15.718Z

Reserved: 2022-04-04T00:00:00

Link: CVE-2022-28568

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-05-04T15:15:13.040

Modified: 2024-11-21T06:57:31.207

Link: CVE-2022-28568

cve-icon Redhat

No data.