CVE-2023-0670
CVE-2023-0670 affects Ulearn (version a5a7ca20de859051ea0470542844980a66dfc05d). The root cause is failure to validate that uploaded files are actual images, enabling an attacker with administrator permissions to achieve Remote Code Execution (RCE) on the server via the image upload feature. Impa...