Vulnerabilities > Flatcore > Flatcore CMS > 1.4.7

DATE CVE VULNERABILITY TITLE RISK
2021-10-28 CVE-2021-3745 Unrestricted Upload of File with Dangerous Type vulnerability in Flatcore Flatcore-Cms
flatcore-cms is vulnerable to Unrestricted Upload of File with Dangerous Type
network
flatcore CWE-434
6.0
6.0
2017-05-10 CVE-2017-8868 Path Traversal vulnerability in Flatcore Flatcore-Cms 1.4.7
acp/core/files.browser.php in flatCore 1.4.7 allows file deletion via directory traversal in the delete parameter to acp/acp.php.
network
low complexity
flatcore CWE-22
5.0
5.0