CVE-2021-42675 – Kreado Kreasfero 1.5 does not properly sanitize uploaded files to the media directory. One …

14 June 2022

Vuln ID: CVE-2021-42675

Published: 2022-06-14 17:15:08Z

Description: Kreado Kreasfero 1.5 does not properly sanitize uploaded files to the media directory. One can upload a malicious PHP file and obtain remote code execution.

Source: NVD.NIST.GOV

Date:

14 June 2022

Categorie(s):

NVD

Tag(s):

NVD

New infosec products of the week: April 19, 202419 April 2024
From Hackers to Streakers – How Counterintelligence Teams are Protecting the NFL – Joe McMann – ESW #35819 April 2024
Cybersecurity firm Wiz reportedly in talks to buy Lacework for $150M-$200M19 April 2024
Microsoft finds Kubernetes clusters targeted by OpenMetadata exploits18 April 2024
6 Best Free and Open-Source Web Application Firewalls18 April 2024