[HIGH] yuan1994 tpAdmin Unrestricted Upload of File with Dangerous Type vulnerability

PKSA-4btn-tjk4-d73q CVE-2023-1970 GHSA-27pg-4cj6-8994

Affected version: <=1.3.12

Reported by:
GitHub

[MEDIUM] yuan1994 tpAdmin vulnerable to Server-Side Request Forgery

PKSA-dm54-pcwt-mv72 CVE-2023-1971 GHSA-qr7h-8pv2-xvx2

Affected version: <=1.3.12

Reported by:
GitHub