First published: Wed Aug 31 2022(Updated: )
The application manage_website.php on Garage Management System 1.0 is vulnerable to Shell File Upload. The already authenticated malicious user, can upload a dangerous RCE or LCE exploit file.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Garage Management System Project Garage Management System | =1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-37184 is a vulnerability in Garage Management System 1.0 that allows an authenticated malicious user to upload a dangerous file for remote code execution or local code execution.
CVE-2022-37184 affects Garage Management System 1.0 by allowing an authenticated malicious user to upload a dangerous file for remote code execution or local code execution.
CVE-2022-37184 has a severity rating of 8.8 (High).
To fix CVE-2022-37184, it is recommended to update Garage Management System to a patched version that addresses the vulnerability.
More information about CVE-2022-37184 can be found at the following reference: [https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/mayuri_k/2022/Garage-Management-System-1.0-SFU]