CVE-2021-40188
CVE-2021-40188 (PHPFusion 9.03.110) is an arbitrary file upload vulnerability. The Admin File Manager fails to filter PHP extensions (e.g., .php, .php7, .phtml, .php5), allowing an attacker to upload a malicious file and execute code on the server. Affected software: PHPFusion 9.03.110. Root caus...