2022-09-27 16:01:40
mitre
PUBLISHED
In Exam Reviewer Management System 1.0, an authenticated attacker can upload a web-shell php file in profile page to achieve Remote Code Execution (RCE).