📦 Hkcms

HkCms versions up to v2.3.2.240702 contain an unrestricted file upload vulnerability in the Upload.php component. Attackers can upload malicious files to execute arbitrary code, leading to complete sy...

HkCms v2.3.2.240702 contains an arbitrary file write vulnerability in Appcenter.php that allows attackers to write malicious files to the server. This affects all systems running this specific version...

This vulnerability allows attackers to inject malicious scripts into the search functionality of HkCms. When users view search results containing the manipulated keyword parameter, their browsers exec...