CVE-2020-36141

Name of the Vulnerable Software and Affected Versions: BloofoxCMS version 0.5.2.1

Description: The issue allows for Unrestricted File Upload by bypassing MIME Type validation. This can be achieved by inserting 'image/jpeg' within the 'Content-Type' header, potentially allowing malicious files to be uploaded to the system.

Recommendations: For BloofoxCMS version 0.5.2.1, consider validating the MIME Type of uploaded files more rigorously to prevent bypassing of the validation mechanism. As a temporary workaround, restrict the types of files that can be uploaded to mitigate the risk of exploitation.