CVE-2021-47753

CVE-2021-47753 affects phpKF CMS 3.00 Beta y6 with an unauthenticated file upload that bypasses extension checks to gain arbitrary code execution. An attacker can upload a PHP file disguised as PNG, rename it, and run system commands via a crafted web shell parameter. Public references (Exploit-D...