Onekeyadmin: >> Onekeyadmin >> 1.3.9 Security Vulnerabilities
onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Member List module.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-03-16
onekeyadmin v1.3.9 was discovered to contain an arbitrary file delete vulnerability via the component \admin\controller\plugins.
CVSS Score
9.1
EPSS Score
0.001
Published
2023-03-09
onekeyadmin v1.3.9 was discovered to contain an arbitrary file read vulnerability via the component /admin1/file/download.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-03-09
onekeyadmin v1.3.9 was discovered to contain an arbitrary file read vulnerability via the component /admin1/curd/code.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-03-08
onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Add Menu module.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-03-08
onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Title parameter under the Adding Categories module.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-03-08
onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Add Administrator module.
CVSS Score
4.8
EPSS Score
0.001
Published
2023-03-07
An arbitrary file upload vulnerability in the component /admin1/config/update of onekeyadmin v1.3.9 allows attackers to execute arbitrary code via a crafted PHP file.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-03-06