Security: Arbitrary File Upload Leads to RCE

Question

abrookbanks opened this issue 4 months ago · comments

Many thanks to Julio Araujo (@julio-cfa) for disclosing this vulnerability responsibly.

Julio A. · Answer 1 · Wed Apr 24 2024 20:26:27 GMT+0800 (China Standard Time)

Thank you, @abrookbanks! I appreciate the quick fix.

adrian24dev · Answer 2 · Sun May 19 2024 12:03:12 GMT+0800 (China Standard Time)

How can we fix this?

Many thanks to Julio Araujo (@julio-cfa) for disclosing this vulnerability responsibly.

Al Brookbanks · Answer 3 · Sun May 19 2024 14:20:10 GMT+0800 (China Standard Time)

Upgrade to the latest version or apply the code changes in this issue.