Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-40932

In Zoo Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of the "gallery" file of the "Gallery" module in the background management system.

Published

2022-09-22T16:15:09.687

Last Modified

2025-05-27T16:15:28.187

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.2 (HIGH)

Weaknesses

Type: Primary
CWE-434
Type: Secondary
CWE-434

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	phpgurukul	zoo_management_system	1.0	Yes

References

https://github.com/lime-10010/Bug_report/blob/main/vendors/pushpam02/zoo-management-system/RCE-1.md Exploit, Third Party Advisory ([email protected])
https://github.com/lime-10010/Bug_report/blob/main/vendors/pushpam02/zoo-management-system/RCE-1.md Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)