Vulnerability CVE-2021-36532
Published: 2023-02-03

Description:
Race condition vulnerability discovered in portfolioCMS 1.0 allows remote attackers to run arbitrary code via fileExt parameter to localhost/admin/uploads.php.

 References:
https://github.com/excellentoldtv/portfolioCMS-issues/issues/1
Copyright 2026, cxsecurity.com

 

Back to Top