cvedb.io
CVE-2022-39179
HIGH · CVSS 7.2
EPSS exploitation probability: 0%
Published 2022-11-17T23:15:18.490 · Last modified 2026-06-17T04:57:51.690

Summary

College Management System v1.0 - Authenticated remote code execution. An admin user (the authentication can be bypassed using SQL Injection that mentioned in my other report) can upload .php file that contains malicious code via student.php file.

Affected products

college_management_system_project — college_management_system

Does this affect you?

Add your gear to cvedb and we'll alert you only when college_management_system_project ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.