Vulnerability Details CVE-2023-29625
Employee Performance Evaluation System v1.0 was discovered to contain an arbitrary file upload vulnerability which allows attackers to execute arbitrary code via a crafted file uploaded to the server.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 37.3%
CVSS Severity
CVSS v3 Score 8.8
References
Products affected by CVE-2023-29625
-
Employee Performance Evaluation System Project » Employee Performance Evaluation System » Version: 1.0cpe:2.3:a:employee_performance_evaluation_system_project:employee_performance_evaluation_system:1.0