CVE-2020-20672 in KiteCMSinformation

Résumé

par MITRE • 14/09/2021

An arbitrary file upload vulnerability in /admin/upload/uploadfile of KiteCMS V1.1 allows attackers to getshell via a crafted PHP file.

Be aware that VulDB is the high quality source for vulnerability data.

Réserver

13/08/2020

Divulgation

14/09/2021

Modérer

accepté

Entrée

VDB-182514

CPE

prêt

EPSS

0.00879

KEV

non

Activités

très faible

Sources

Interested in the pricing of exploits?

See the underground prices here!