CVE-2023-26949

Publication date

2023-03-06 00:00:00

Family

mitre

State

PUBLISHED

Description

An arbitrary file upload vulnerability in the component /admin1/config/update of onekeyadmin v1.3.9 allows attackers to execute arbitrary code via a crafted PHP file.