Filtered by vendor Victoralagwu
Subscriptions
Filtered by product Cmssite
Subscriptions
Total
1 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2020-36942 | 1 Victoralagwu | 1 Cmssite | 2026-01-27 | 8.8 High |
| Victor CMS 1.0 contains a file upload vulnerability that allows authenticated users to upload malicious PHP files through the profile image upload feature. Attackers can upload a PHP shell to the /img directory and execute system commands by accessing the uploaded file via web browser. | ||||
Page 1 of 1.