CVE-2020-37023

HIGH

Koken CMS <0.22.24 - Auth Bypass

Title source: llm

Description

Koken CMS 0.22.24 contains a file upload vulnerability that allows authenticated attackers to bypass file extension restrictions by renaming malicious PHP files. Attackers can upload PHP files with system command execution capabilities by manipulating the file upload request through a web proxy and changing the file extension.

Exploits (1)

exploitdb WORKING POC

by V1n1v131r4 · textwebappsphp

https://www.exploit-db.com/exploits/48706

View Code ZIP pw:eip

References (5)

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/48706

[Various Sources] http://koken.me/

[Various Sources] https://www.softaculous.com/apps/cms/Koken

[Various Sources] https://github.com/V1n1v131r4/Bypass-File-Upload-on-Koken-CMS/blob/master/README.md

[Third Party Advisory] https://www.vulncheck.com/advisories/koken-cms-arbitrary-file-upload

Scores

CVSS v3 8.8

EPSS 0.0014

EPSS Percentile 34.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-434

Status published

Published Jan 30, 2026

Tracked Since Feb 18, 2026