Skip to main content

Phpshe CVE-2022-24132

HIGH
2022-03-30 cve@mitre.org
7.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.5 HIGH
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

1
CVE Published
Mar 30, 2022 - 18:15 nvd
HIGH 7.5

DescriptionNVD

phpshe V1.8 is affected by a denial of service (DoS) attack in the registry's verification code, which can paralyze the target service.

AnalysisAI

phpshe V1.8 is affected by a denial of service (DoS) attack in the registry's verification code, which can paralyze the target service. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Technical ContextAI

phpshe V1.8 is affected by a denial of service (DoS) attack in the registry's verification code, which can paralyze the target service. Affected products include: Phpshe.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

More in Phpshe

View all
CVE-2020-19165 CRITICAL POC
9.8 Dec 11

PHPSHE 1.7 has SQL injection via the admin.php?mod=user&userlevel_id=1 userlevel_id[] parameter. Rated critical severity

CVE-2019-9762 CRITICAL POC
9.8 Mar 14

A SQL Injection was discovered in PHPSHE 1.7 in include/plugin/payment/alipay/pay.php with the parameter id. Rated criti

CVE-2019-9626 CRITICAL POC
9.8 Mar 07

PHPSHE 1.7 allows module/index/cart.php pintuan_id SQL Injection to index.php. Rated critical severity (CVSS 9.8), this

CVE-2018-18486 CRITICAL POC
9.8 Oct 18

An issue was discovered in PHPSHE 1.7. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, n

CVE-2019-9761 HIGH POC
7.5 Mar 14

An XXE issue was discovered in PHPSHE 1.7, which can be used to read any file in the system or scan the internal network

CVE-2018-18485 HIGH POC
7.5 Oct 18

An issue was discovered in PHPSHE 1.7. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no au

CVE-2019-6708 HIGH POC
7.2 Jan 23

PHPSHE 1.7 has SQL injection via the admin.php?mod=order state parameter. Rated high severity (CVSS 7.2), this vulnerabi

CVE-2019-6707 HIGH POC
7.2 Jan 23

PHPSHE 1.7 has SQL injection via the admin.php?mod=product&act=state product_id[] parameter. Rated high severity (CVSS 7

CVE-2018-8943 CRITICAL
9.8 Mar 22

There is a SQL injection in the PHPSHE 1.6 userbank parameter. Rated critical severity (CVSS 9.8), this vulnerability is

CVE-2025-3553 MEDIUM POC
5.3 Apr 14

A vulnerability was found in phpshe 1.8. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, l

CVE-2025-3554 MEDIUM POC
5.3 Apr 14

A vulnerability was found in phpshe 1.8. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, n

Share

CVE-2022-24132 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy