CVE-2026-37748 — HIGH (7.2)

Vulnerability Description

Visitor Management System 1.0 by sanjay1313 is vulnerable to Unrestricted File Upload in vms/php/admin_user_insert.php and vms/php/update_1.php. The move_uploaded_file() function is called without any MIME type, extension, or content validation, allowing an authenticated admin to upload a PHP webshell and achieve Remote Code Execution on the server.

CVSS Score

7.2

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Sanjay1313	Visitor Management System	1.0

Related Weaknesses (CWE)

CWE-434

References

https://github.com/menevarad007/CVE-2026-37748ExploitThird Party Advisory
https://github.com/sanjay1313/Visitor-Management-SystemProduct
https://github.com/menevarad007/CVE-2026-37748ExploitThird Party Advisory

FAQ

What is CVE-2026-37748?

CVE-2026-37748 is a vulnerability with a CVSS score of 7.2 (HIGH). Visitor Management System 1.0 by sanjay1313 is vulnerable to Unrestricted File Upload in vms/php/admin_user_insert.php and vms/php/update_1.php. The move_uploaded_file() function is called without any...

How severe is CVE-2026-37748?

CVE-2026-37748 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2026-37748?

Check the references section above for vendor advisories and patch information. Affected products include: Sanjay1313 Visitor Management System.