CVE-2024-9278 | HuankeMao SCRM up to 0.0.3 Administrator Backend WxkConfig.php upload_domain_verification_file unrestricted upload
A vulnerability, which was classified as critical, has been found in HuankeMao SCRM up to 0.0.3. Affected by this issue is the function upload_domain_verification_file of the file WxkConfig.php of the component Administrator Backend. The manipulation of the argument domain_verification_file leads to unrestricted upload.
This vulnerability is handled as CVE-2024-9278. The attack may be launched remotely. Furthermore, there is an exploit available.