2022-06-14 16:29:42
mitre
PUBLISHED
Kreado Kreasfero 1.5 does not properly sanitize uploaded files to the media directory. One can upload a malicious PHP file and obtain remote code execution.