CVE-2023-26949

An arbitrary file upload vulnerability in the component /admin1/config/update of onekeyadmin v1.3.9 allows attackers to execute arbitrary code via a crafted PHP file...

Privilege escalation

An arbitrary file upload vulnerability in the component /admin1/config/update of onekeyadmin v1.3.9 allows attackers to execute arbitrary code via a crafted PHP file...

OneKeyAdmin 代码问题漏洞

OneKeyAdmin is About plug-in management system based on Thinkphp6+Element, website, applets, malls, CMS, APP, ERP, API interface a system to get it all done, no scaffolding out of the box! OneKeyAdmin v1.3.9 version of the existence of security vulnerabilities , the vulnerability stems from the...

CVE-2023-26949

An arbitrary file upload vulnerability in the component /admin1/config/update of onekeyadmin v1.3.9 allows attackers to execute arbitrary code via a crafted PHP file...

CVE-2023-26949

CVE-2023-26949 affects onekeyadmin v1.3.9; the arbitrary file upload flaw in /admin1/config/update allows executing arbitrary PHP code. Connected sources corroborate the issue, but no patch/version remediation details are provided in the supplied documents. Exploitation information is not fully d...

PT-2023-20866 · Unknown · Onekeyadmin

Name of the Vulnerable Software and Affected Versions: onekeyadmin version 1.3.9 Description: The issue is related to an arbitrary file upload vulnerability in the /admin1/config/update component, allowing attackers to execute arbitrary code via a crafted PHP file. Recommendations: For onekeyadmi...

CVE-2023-26949

An arbitrary file upload vulnerability in the component /admin1/config/update of onekeyadmin v1.3.9 allows attackers to execute arbitrary code via a crafted PHP file...