Vulnerability — CVE-2023-26949

CVE-2023-26949

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2023-26949
Description:: An arbitrary file upload vulnerability in the component /admin1/config/update of onekeyadmin v1.3.9 allows attackers to execute arbitrary code via a crafted PHP file.
Last updated date:: 03/13/2023

Type:: exploit
Confidence:: HIGH
Date of publishing:: 03/13/2023
Reference url to background: https://github.com/keheying/onekeyadmin/issues/1