CVE-2022-1837: Home Clean Services Management System unrestricted upload
First published: Tue May 24 2022(Updated: )
A vulnerability was found in Home Clean Services Management System 1.0. It has been rated as critical. Affected by this issue is register.php?link=registerand. The manipulation with the input <?php phpinfo();?> leads to code execution. The attack may be launched remotely but demands an authentication. Exploit details have been disclosed to the public.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Home Clean Services Management System | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2022-1837?
CVE-2022-1837 has been rated as critical.
What is the impact of CVE-2022-1837?
CVE-2022-1837 allows for remote code execution due to improper handling of user input.
How can I fix CVE-2022-1837?
To fix CVE-2022-1837, it is recommended to update the Home Clean Services Management System to a patched version.
Which version of Home Clean Services Management System is affected by CVE-2022-1837?
Version 1.0 of Home Clean Services Management System is affected by CVE-2022-1837.
Can the CVE-2022-1837 vulnerability be exploited remotely?
Yes, the vulnerability CVE-2022-1837 can be exploited remotely.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/title
- agent/weakness
- agent/author
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/home clean services management system project
- canonical/home clean services management system
- version/home clean services management system/1.0