CVE-2022-3492

High

A vulnerability classified as critical was found in SourceCodester Human Resource Management System 1.0. This vulnerability affects unknown…

VulDB·CWE-707·Published 2022-10-13

CVSS

8.8

EPSS

0.01

KEV

Exploits

cve.orgen

348 chars

A vulnerability classified as critical was found in SourceCodester Human Resource Management System 1.0. This vulnerability affects unknown code of the component Profile Photo Handler. The manipulation of the argument parameter leads to os command injection. The attack can be initiated remotely. The identifier of this vulnerability is VDB-210772.

NVDen

348 chars

NVDes

388 chars

Se ha encontrado una vulnerabilidad clasificada como crítica en SourceCodester Human Resource Management System versión 1.0. Esta vulnerabilidad afecta a código desconocido del componente Profile Photo Handler. La manipulación del parámetro del argumento conlleva a una inyección de comandos. El ataque puede ser iniciado remotamente. El identificador de esta vulnerabilidad es VDB-210772

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	NVD	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
3.1	Primary	cve.org	6.3	—	—	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L