Security Advisory
CVE-2025-46001
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
An arbitrary file upload vulnerability in the is_allowed_file_type() function of Filemanager v2.3.0 allows attackers to execute arbitrary code via uploading a crafted PHP file.