CVE-2016-10756

Published: 2019-05-24T18:29Z

Last Modified: 2024-11-21T02:44Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Kliqqi 3.0.0.5 allows CSRF with resultant Arbitrary File Upload because module.php?module=upload can be used to configure the uploading of .php files, and then modules/upload/upload_main.php can be used for the upload itself. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt