MidnightBSD

Advisories for serinf

CVE-2022-47768

Serenissima Informatica Fast Checkin 1.0 is vulnerable to Directory Traversal.

Products Affected

Vendor Product Version
serinf fast_checkin 1.0
CVE-2022-47769

An arbitrary file write vulnerability in Serenissima Informatica Fast Checkin v1.0 allows unauthenticated attackers to upload malicious files in the web root of the application to gain access to the server via the web shell.

Products Affected

Vendor Product Version
serinf fast_checkin 1.0
CVE-2022-47770

Serenissima Informatica Fast Checkin version v1.0 is vulnerable to Unauthenticated SQL Injection.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
serinf fast_checkin 1.0