CNNVD-202601-5015 Information

CNNVD ID

CNNVD-202601-5015

Related CVE

CVE-2020-37023

• CNNVD Published: 2026-01-30

Description (Chinese)

Koken CMS是Todd Dominey个人开发者的一个内容管理系统。 Koken CMS 0.22.24版本存在代码问题漏洞，该漏洞源于文件上传功能存在扩展名限制绕过，可能导致上传恶意PHP文件并执行系统命令。

Description (English)

Koken CMS is a content management system for Todd Dominey’s personal developer. The Koken CMS 0.22.24 version has a code problem loophole, which stems from the extension limit of the file upload function, which may result in the uploading of malicious PHP files and the execution of system commands.

Hazard Level

Medium

Vulnerability Type

代码问题

Affected Vendor

个人开发者

Published

2026-01-30

Last Modified

2026-02-24

References

http://koken.me/ https://github.com/V1n1v131r4/Bypass-File-Upload-on-Koken-CMS/blob/master/README.md https://www.exploit-db.com/exploits/48706 https://www.softaculous.com/apps/cms/Koken https://www.vulncheck.com/advisories/koken-cms-arbitrary-file-upload