intruderlabs/2023-05-25-ziroudei

Releases0

MKAuth RCE

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-27246 ↗	Mar 28, 2023Tuesday, 28 March 2023, 18:15	8.8 HIGH	—
An arbitrary file upload vulnerability in the Virtual Disk of MK-Auth 23.01K4.9 allows attackers to execute arbitrary code via uploading a crafted .htaccess file.