VYPR
High severity7.2NVD Advisory· Published Nov 17, 2022· Updated Jun 17, 2026

CVE-2022-39179

CVE-2022-39179

Description

College Management System v1.0 - Authenticated remote code execution. An admin user (the authentication can be bypassed using SQL Injection that mentioned in my other report) can upload .php file that contains malicious code via student.php file.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.