CVE-2023-53956

Name of the Vulnerable Software and Affected Versions Flatnux version 2021-03.25

Description The software contains an authenticated file upload issue that permits administrative users to upload arbitrary PHP files via the file manager. An attacker with administrative access can upload malicious PHP scripts to the web root directory, potentially enabling remote code execution on the server.

Recommendations Update to a newer version that contains a fix for this vulnerability.