Every CVE whose affected-product data names Kooboo Kooboo Cms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2021-36581 — CVSS 9.8 (critical): Kooboo CMS 2.1.1.0 is vulnerable to Insecure file upload. It is possible to upload any file extension to the server. The server does not…
CVE-2021-36582 — CVSS 9.8 (critical): In Kooboo CMS 2.1.1.0, it is possible to upload a remote shell (e.g., aspx) to the server and then call upon it to receive a reverse shell…