Описание
ThinkAdmin arbitrary file upload vulnerability
An arbitrary file upload vulnerability in the component /admin/api.upload/file of ThinkAdmin v6.1.53 allows attackers to execute arbitrary code via a crafted Zip file.
Пакеты
Наименование
zoujingli/thinkadmin
composer
Затронутые версииВерсия исправления
<= 6.1.53
Отсутствует
Связанные уязвимости
CVSS3: 8.8
nvd
около 2 лет назад
An arbitrary file upload vulnerability in the component /admin/api.upload/file of ThinkAdmin v6.1.53 allows attackers to execute arbitrary code via a crafted Zip file.