No advisories yet.
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
Fri, 17 Jul 2026 03:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Unrestricted PHP File Upload Allows Remote Code Execution in Webkul Krayin CRM Admin Interface |
Tue, 14 Jul 2026 22:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Arbitrary File Upload in Webkul Krayin CRM Enables Remote Code Execution |
Sun, 12 Jul 2026 12:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Arbitrary File Upload in Webkul Krayin CRM Enables Remote Code Execution |
Fri, 10 Jul 2026 19:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Authenticated Arbitrary File Upload Allowing Remote Code Execution in Webkul Krayin CRM v2.2.x |
Wed, 15 Apr 2026 21:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Krayin
Krayin laravel-crm |
|
| Vendors & Products |
Krayin
Krayin laravel-crm |
Tue, 14 Apr 2026 18:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| References |
| |
| Metrics |
ssvc
|
Tue, 14 Apr 2026 16:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Authenticated Arbitrary File Upload Allowing Remote Code Execution in Webkul Krayin CRM v2.2.x | |
| Weaknesses | CWE-434 |
Tue, 14 Apr 2026 15:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | An authenticated arbitrary file upload vulnerability in the /admin/tinymce/upload endpoint of Webkul Krayin CRM v2.2.x allows attackers to execute arbitrary code via uploading a crafted PHP file. | |
| References |
| |
| Metrics |
cvssV3_1
|
Projects
Sign in to view the affected projects.
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2026-04-14T17:50:54.198Z
Reserved: 2026-04-06T00:00:00.000Z
Link: CVE-2026-38526
Updated: 2026-04-14T17:50:23.352Z
Status : Deferred
Published: 2026-04-14T16:16:43.127
Modified: 2026-06-17T10:41:42.487
Link: CVE-2026-38526
No data.
OpenCVE Enrichment
Updated: 2026-07-17T03:30:04Z