CVE-2022-40878 Information

Description

In Exam Reviewer Management System 1.0 an authenticated attacker can upload a web-shell php file in profile page to achieve Remote Code Execution (RCE).

Reference

https://www.exploit-db.com/exploits/50726