Insecure Unserialize Vulnerability in ThinkAdmin by Zoujingli
CVE-2020-23653
9.8CRITICAL
What is CVE-2020-23653?
An insecure unserialize vulnerability exists in ThinkAdmin versions 4.x to 6.x located in app/admin/controller/api/Update.php and app/wechat/controller/api/Push.php. This flaw can potentially allow attackers to execute arbitrary code remotely, posing significant security risks to the affected systems. Employing proper security measures and updates is crucial for mitigating this vulnerability.
