8.8

CVE-2026-35164

Exploit

EPSS 0.23%
Veröffentlicht 06.04.2026 17:33:33
Zuletzt bearbeitet 14.04.2026 15:51:15
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Brave CMS is an open-source CMS. Prior to 2.0.6, an unrestricted file upload vulnerability exists in the CKEditor upload functionality. It is found in app/Http/Controllers/Dashboard/CkEditorController.php within the ckupload method. The method fails to validate uploaded file types and relies entirely on user input. This allows an authenticated user to upload executable PHP scripts and gain Remote Code Execution. This vulnerability is fixed in 2.0.6.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ajax30 ≫ Bravecms Version >= 2.0.0 < 2.0.6

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.23%	0.461

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security-advisories@github.com	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-434 Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

https://github.com/Ajax30/BraveCMS-2.0/security/advisories/GHSA-2j4q-6p52-4rhw

Vendor Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2026-35164

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-35164

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-35164

EUVD