Vulnerability Details CVE-2022-41538
Wedding Planner v1.0 was discovered to contain an arbitrary file upload vulnerability in the component /Wedding-Management-PHP/admin/photos_add.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 34.8%
CVSS Severity
CVSS v3 Score 8.8
References
Products affected by CVE-2022-41538
-
cpe:2.3:a:wedding_planner_project:wedding_planner:1.0