8 matches found
EUVD-2023-0922
Malicious code in bioql PyPI...
Unrestricted File Upload
funadmin/funadmin is vulnerable to Unrestricted File Uploads. The vulnerability exists in localinstall function at Addon.php due to not restricting plugin files that can be uploaded which allows an attacker to perform unauthorized actions...
Remote code execution in Funadmin
Funadmin v3.2.0 was discovered to contain a remote code execution RCE vulnerability via the component \controller\Addon.php...
GHSA-7G53-JJ25-JHGR Remote code execution in Funadmin
Funadmin v3.2.0 was discovered to contain a remote code execution RCE vulnerability via the component \controller\Addon.php...
CVE-2023-24776
Funadmin v3.2.0 was discovered to contain a remote code execution RCE vulnerability via the component \controller\Addon.php...
Remote code execution
Funadmin v3.2.0 was discovered to contain a remote code execution RCE vulnerability via the component \controller\Addon.php...
CVE-2023-24776
Funadmin v3.2.0 was discovered to contain a remote code execution RCE vulnerability via the component \controller\Addon.php...
CVE-2023-24776
Funadmin v3.2.0 is affected by a remote code execution (RCE) vulnerability in the controllerAddon.php component (via \controller\Addon.php). NVD lists CVSS v3.1 base score 9.8 (CRITICAL) with network attack vector, no privileges, no user interaction required, and impact to confidentiality, integr...