Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 15/07/2022 Updated: 22/07/2022

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 0

Arox School ERP Pro v1.0 exists to contain multiple arbitrary file upload vulnerabilities via the Add Photo function at photogalleries.inc.php and the import staff excel function at 1finance_master.inc.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
arox school erp pro 1.0

CVE-2022-32119 - Arox-Unrestricted-File-Upload

CVE-2022-32119 - Arox-Unrestricted-File-Upload There are multiple unrestricted file uploads that result in the arbitrary execution of PHP code Authenticated Vulnerable Pages: localhost/office_admin/?pid=54&action=add -----------------------------181967832439954202373233921976 Content-Disposition: form-data; name="apid" 2 -----------------------------181

CWE-434 http://school.com https://github.com/JC175/CVE-2022-32119 http://arox.com https://nvd.nist.gov https://github.com/JC175/CVE-2022-32119

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2022-32119

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect