zoujingli/thinkadmin Security Advisories (6)
-
[HIGH] ThinkAdmin arbitrary file upload vulnerability
PKSA-v7jp-ch4q-h2qt CVE-2023-48966 GHSA-7gq9-p94f-g5v9
Affected version: <=6.1.53
Reported by:
GitHub -
[HIGH] ThinkAdmin Admin Panel Access using Default Credentials
PKSA-c2q3-bhvj-nwpw CVE-2020-35296 GHSA-cxv7-6jgf-7gwf
Affected version: =6.0
Reported by:
GitHub -
[CRITICAL] ThinkAdmin insecure unserialize vulnerability
PKSA-q4g8-f8kq-8djx CVE-2020-23653 GHSA-4vp2-mj4m-69m4
Affected version: >=4.0,<6.1.0
Reported by:
GitHub -
[HIGH] ThinkAdmin directory traversal vulnerability
PKSA-ck5n-gxkg-jgp9 CVE-2020-25540 GHSA-2qm5-r82g-5hcx
Affected version: =6.0
Reported by:
GitHub -
[CRITICAL] ThinkAdmin Administrator cookies still working after password change
PKSA-pwcm-49dh-tsv6 CVE-2019-11018 GHSA-qv5j-rwq3-m823
Affected version: =4.0
Reported by:
GitHub -
[MEDIUM] Cross-site scripting in ThinkAdmin
PKSA-df96-cjv6-pb6m CVE-2020-29315 GHSA-v47f-vp3p-5j6h
Affected version: <6.0.22
Reported by:
GitHub