Frog Cms · Frog Cms · CVE-2014-4912
**Name of the Vulnerable Software and Affected Versions**
Frog CMS version 0.9.5
**Description**
An issue was discovered due to a lack of extension validation, allowing for arbitrary file upload.
**Recommendations**
For Frog CMS version 0.9.5, consider implementing proper extension validation to prevent arbitrary file uploads until a patch is available.