funadmin v3.3.2 and v3.3.3 are vulnerable to insecure file upload via the plugins install.
{ "nvd_published_at": "2023-06-22T15:15:13Z", "cwe_ids": [ "CWE-434" ], "severity": "CRITICAL", "github_reviewed": true, "github_reviewed_at": "2023-06-22T20:01:31Z" }