Vulnerability Details : CVE-2022-36638
An access control issue in the component print.php of Garage Management System v1.0 allows unauthenticated attackers to access data for all existing orders.
Products affected by CVE-2022-36638
- cpe:2.3:a:garage_management_system_project:garage_management_system:1.0:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2022-36638
0.09%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 38 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2022-36638
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.3
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
3.9
|
1.4
|
NIST |
References for CVE-2022-36638
-
https://senzee.net/index.php/2022/07/21/vulnerability-of-garage-management-system-1-0/
Vulnerability of Garage Management System 1.0 – Cyber WorldExploit;Third Party Advisory
-
https://www.sourcecodester.com/php/15485/garage-management-system-using-phpmysql-source-code.html
Garage Management System using PHP/MySQL Free Source Code | Free Source Code Projects and TutorialsProduct
Jump to