9.8 High
AI Score
Confidence
High
0.012 Low
EPSS
Percentile
85.0%
An insecure unserialize vulnerability was discovered in ThinkAdmin versions 4.x through 6.x in app/admin/controller/api/Update.php and app/wechat/controller/api/Push.php, which may lead to arbitrary remote code execution.
github.com/zoujingli/ThinkAdmin/issues/238