📦 Kitecms

CVE-2021-31707 is a critical remote code execution vulnerability in KiteCMS that allows attackers to upload malicious files and execute arbitrary code on affected systems. This affects all KiteCMS ins...

KiteCMS 1.1 has an incorrect access control vulnerability that allows remote attackers to view sensitive files by manipulating URL paths. This affects all installations of KiteCMS 1.1 that are exposed...

KiteCMS V1.1 contains an arbitrary file upload vulnerability in the /admin/upload/uploadfile endpoint that allows attackers to upload malicious PHP files. This enables remote code execution (RCE) and ...