CVE-2016-11020 Blast Radius

CRITICAL • CVSS 9.8Kunena before 5.0.4 does not restrict avatar file extensions to gif, jpeg, jpg, and png. This can lead to XSS and remote code execution.

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2016-11020.

Start Free Scan →← Back to CVE-2016-11020