CVE-2022-2694
Summary
| CVE | CVE-2022-2694 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2022-08-06 18:15:00 UTC |
| Updated | 2022-08-11 13:31:00 UTC |
| Description | A vulnerability was found in SourceCodester Company Website CMS and classified as critical. This issue affects some unknown processing. The manipulation leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-205817 was assigned to this vulnerability. |
Risk And Classification
Problem Types: CWE-434
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Company Website Cms Project | Company Website Cms | - | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Company-Website-CMS/Company Website CMS-FileUpload.md at main · Jamison2022/Company-Website-CMS · GitHub | MISC | github.com | |
| CVE-2022-2694 | SourceCodester Company Website CMS unrestricted upload | MISC | vuldb.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.