Kitesky - Kitecms CVE

Filtered by vendor Kitesky Subscribe

Filtered by product Kitecms

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-28445	1 Kitesky	1 Kitecms	2022-05-02	4.0 MEDIUM	6.5 MEDIUM
KiteCMS v1.1.1 was discovered to contain an arbitrary file read vulnerability via the background management module.
CVE-2021-31731	1 Kitesky	1 Kitecms	2021-08-17	5.5 MEDIUM	6.5 MEDIUM
A directory traversal issue in KiteCMS 1.1.1 allows remote administrators to overwrite arbitrary files via ../ in the path parameter to index.php/admin/Template/fileedit, with PHP code in the html parameter.

Vulnerabilities (CVE)