Xinbate

**Name of the Vulnerable Software and Affected Versions** HadSky versions up to 7.11.8 **Description** A critical issue has been found, affecting the Installation Interface component, specifically the /install/index.php file. This issue leads to command injection and can be initiated remotely. The exploit has been disclosed publicly. **Recommendations** For HadSky versions up to 7.11.8, update to a version later than 7.11.8 to resolve the issue. As a temporary workaround, consider restricting access to the /install/index.php file to minimize the risk of exploitation.