Vulnerability Details CVE-2023-5185
Gym Management System Project v1.0 is vulnerable to
an Insecure File Upload vulnerability on the 'file'
parameter of profile/i.php page, allowing an
authenticated attacker to obtain Remote Code Execution
on the server hosting the application.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.014
EPSS Ranking 79.5%
CVSS Severity
CVSS v3 Score 9.1
References
Products affected by CVE-2023-5185
-
cpe:2.3:a:projectworlds:gym_management_system_project:1.0