Lucene search
China National Vulnerability DatabaseCNVD-2021-93889HistorySep 14, 2021 - 12:00 a.m.
KiteCMS arbitrary file upload vulnerability
2021-09-1400:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
kitecms
file upload
vulnerability
getshell
php
content management system
think php
arbitrary
EPSS
0.001
Percentile
36.4%
KiteCMS is a content management system based on think php. An arbitrary file upload vulnerability exists in /admin/upload/uploadfile in KiteCMS version 1.1. An attacker can exploit the vulnerability getshell via a specially crafted PHP file.
Related
cvelist
cvelist
CVE-2020-20672
2021-09-13 21:13:10
nvd
nvd
CVE-2020-20672
2021-09-13 22:15:10
cve
cve
CVE-2020-20672
2021-09-13 22:15:10
osv
osv
CVE-2020-20672
2021-09-13 22:15:10
prion
prion
Design/Logic Flaw
2021-09-13 22:15:00