Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kreasfero vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2021-44581
An SQL Injection vulnerabilty exists in Kreado Kreasfero 1.5 via the id parameter.
Kreado Kreasfero 1.5
9.8
CVSSv3
CVE-2021-42675
Kreado Kreasfero 1.5 does not properly sanitize uploaded files to the media directory. One can upload a malicious PHP file and obtain remote code execution.
Kreado Kreasfero 1.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
client side
CVE-2023-31889
template injection
CVE-2024-4304
CVE-2006-4304
CVE-2024-33272
type confusion
CVE-2024-21345
CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started