Arbitrary File Upload vulnerability in Doctor-Appointment version 1.0 in /Frontend/signup_com.php, allows attackers to execute arbitrary code.
References
Link | Resource |
---|---|
https://github.com/Cosemz/CVE/blob/main/Doctor-Appointment.md | Exploit Third Party Advisory |
Configurations
History
17 May 2025, 01:58
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:divscorp:doctor-appointment:1.0:*:*:*:*:*:*:* | |
References | () https://github.com/Cosemz/CVE/blob/main/Doctor-Appointment.md - Exploit, Third Party Advisory | |
First Time |
Divscorp doctor-appointment
Divscorp |
11 Dec 2024, 16:15
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
CWE | CWE-94 |
09 Dec 2024, 17:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-12-09 17:15
Updated : 2025-05-17 01:58
NVD link : CVE-2022-38946
Mitre link : CVE-2022-38946
CVE.ORG link : CVE-2022-38946
JSON object : View
Products Affected
divscorp
- doctor-appointment
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')