Vulnerability Details CVE-2022-36582
An arbitrary file upload vulnerability in the component /php_action/createProduct.php of Garage Management System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 50.1%
CVSS Severity
CVSS v3 Score 7.2
References
Products affected by CVE-2022-36582
-
cpe:2.3:a:garage_management_system_project:garage_management_system:1.0