CVE-2026-9421

HIGH WAF: Medium

CVSS 7.3 Published: 2026-05-25

CWE-434

A vulnerability was determined in KLiK SocialMediaWebsite 1.0. This vulnerability affects the function uniqid of the file upload.inc.php of the component File Handler. This manipulation causes unrestricted upload. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized.

WAF Coverage Analysis

Unrestricted File Upload Medium WAF Coverage

OWASP: A04:2021 Insecure Design

930xxx - Local File Inclusion

References

vuldb.com
vuldb.com
vuldb.com

Back to CVE Database