Product

Funadmin <= 7.1.0-Rc6

1 brief RSS

Funadmin Unrestricted File Upload Vulnerability (CVE-2026-7733)

Funadmin versions up to 7.1.0-rc6 are vulnerable to unrestricted file uploads due to improper handling of the File argument in the UploadService::chunkUpload function, potentially leading to remote code execution.

funadmin <= 7.1.0-rc6 cve unrestricted file upload remote code execution

2r 1t 1c 16h ago