Badaso is an open source Laravel Vue headless CMS. uatech Badaso version 2.6.3 suffers from a remote command execution vulnerability that stems from a failure to properly validate user uploaded data, which could be exploited by an unauthenticated remote attacker to remotely execute arbitrary code on the server.
CPE | Name | Operator | Version |
---|---|---|---|
uatech badaso | eq | 2.6.3 |