PT-2026-42999 · Unknown · Klik Socialmediawebsite

G111

·

Published

2026-05-25

·

Updated

2026-05-25

·

CVE-2026-9421

CVSS v2.0

7.5

High

VectorAV:N/AC:L/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions KLiK SocialMediaWebsite version 1.0
Description An issue exists in the File Handler component within the uniqid() function of the upload.inc.php file. This flaw allows for unrestricted file upload, which can be initiated remotely.
Recommendations As a temporary workaround, consider restricting access to the upload.inc.php file or disabling the uniqid() function within the File Handler component until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Unrestricted File Upload

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-9421

Affected Products

Klik Socialmediawebsite