CVE-2022-43085

An arbitrary file upload vulnerability in add_product.php of Restaurant POS System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.
References
Link Resource
https://github.com/Tr0e/CVE_Hunter/blob/main/RCE-3.md Exploit Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:codeastro:restaurant_pos_system:1.0:*:*:*:*:*:*:*

History

14 Feb 2024, 19:10

Type Values Removed Values Added
First Time Codeastro
Codeastro restaurant Pos System
CPE cpe:2.3:a:restaurant_pos_system_project:restaurant_pos_system:1.0:*:*:*:*:*:*:* cpe:2.3:a:codeastro:restaurant_pos_system:1.0:*:*:*:*:*:*:*

Information

Published : 2022-11-01 14:15

Updated : 2024-02-28 19:29


NVD link : CVE-2022-43085

Mitre link : CVE-2022-43085

CVE.ORG link : CVE-2022-43085


JSON object : View

Products Affected

codeastro

  • restaurant_pos_system
CWE
CWE-434

Unrestricted Upload of File with Dangerous Type