Vulnerabilities > Blog SSM Project

DATE	CVE	VULNERABILITY TITLE	RISK
2023-01-26	CVE-2022-40035	Unrestricted Upload of File with Dangerous Type vulnerability in Blog-Ssm Project Blog-Ssm 1.0 File Upload Vulnerability found in Rawchen Blog-ssm v1.0 allowing attackers to execute arbitrary commands and gain escalated privileges via the /uploadFileList component. network low complexity blog-ssm-project CWE-434	8.8
2023-01-26	CVE-2022-40036	Unspecified vulnerability in Blog-Ssm Project Blog-Ssm 1.0 An issue was discovered in Rawchen blog-ssm v1.0 allows an attacker to obtain sensitive user information by bypassing permission checks via the /adminGetUserList component. network low complexity blog-ssm-project	6.5

Vulnerabilities > Blog SSM Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Blog SSM Project"}]}