CVE-2021-42675 – Kreado Kreasfero 1.5 does not properly sanitize uploaded files to the media directory. One …

Vuln ID: CVE-2021-42675

Published:  2022-06-14  17:15:08Z

Description: Kreado Kreasfero 1.5 does not properly sanitize uploaded files to the media directory. One can upload a malicious PHP file and obtain remote code execution.

Source: NVD.NIST.GOV