Security Advisory
CVE-2023-26949
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
An arbitrary file upload vulnerability in the component /admin1/config/update of onekeyadmin v1.3.9 allows attackers to execute arbitrary code via a crafted PHP file.