2 matches found
CVE-2021-36581
CVE-2021-36581 affects Kooboo CMS 2.1.1.0 and is an insecure file upload vulnerability. The description states the server does not verify file extensions, allowing uploads of arbitrary files (example: aspx), which could impact confidentiality, integrity, and availability as reflected by the CVSS ...
CVE-2021-36581
Kooboo CMS 2.1.1.0 is vulnerable to Insecure file upload. It is possible to upload any file extension to the server. The server does not verify the extension of the file and the tester was able to upload an aspx to the server...