Security Advisory

CVE-2022-39179

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-11-17 22:27:55

Last updated 2025-04-28 18:14:25

Assigner INCD

State PUBLISHED

Description

College Management System v1.0 - Authenticated remote code execution. An admin user (the authentication can be bypassed using SQL Injection that mentioned in my other report) can upload .php file that contains malicious code via student.php file.

← Browse all CVEs View on cve.org ↗