Phpkf

phpkf

3 CVEs • 3 products

Products (3)

Click to collapse

Toggle

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-47753 1Phpkf 1Cms Jan 23, 2026 Jan 15, 2026 9.3 CRITICAL· v4 9.8 CRITICAL· v3 N/A· v2 phpKF CMS 3.00 Beta y6 contains an unauthenticated file upload vulnerability that allows remote attackers to execute arbitrary code by bypassing file extension checks. Attackers can upload a PHP file disguised as a PNG,...Show more phpKF CMS 3.00 Beta y6 contains an unauthenticated file upload vulnerability that allows remote attackers to execute arbitrary code by bypassing file extension checks. Attackers can upload a PHP file disguised as a PNG, rename it, and execute system commands through a crafted web shell parameter.Show less
CVE-2008-6516 1Phpkf 1Phpkf Portal Apr 23, 2026 Mar 25, 2009 N/A· v4 N/A· v3 7.5 HIGH· v2 Multiple directory traversal vulnerabilities in phpKF-Portal 1.10 allow remote attackers to include arbitrary files via a .. (dot dot) in the (1) tema_dizin parameter to baslik.php and (2) portal_ayarlarportal_dili param...Show more Multiple directory traversal vulnerabilities in phpKF-Portal 1.10 allow remote attackers to include arbitrary files via a .. (dot dot) in the (1) tema_dizin parameter to baslik.php and (2) portal_ayarlarportal_dili parameter to anket_yonetim.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.Show less
CVE-2008-6443 1Phpkf 1Phpkf Apr 23, 2026 Mar 9, 2009 N/A· v4 N/A· v3 7.5 HIGH· v2 SQL injection vulnerability in forum_duzen.php in phpKF allows remote attackers to execute arbitrary SQL commands via the fno parameter.