📦 Thinkadmin

Name: Thinkadmin
Author: Thinkadmin

by Thinkadmin

🔍 What is Thinkadmin?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2020-23653

CRITICAL CVSS 9.8 Jan 13, 2021

This vulnerability allows remote attackers to execute arbitrary code on ThinkAdmin systems by exploiting insecure unserialize functions in specific API controllers. It affects ThinkAdmin versions 4.x ...

CVE-2023-48965

HIGH CVSS 8.8 Dec 4, 2023

This vulnerability in ThinkAdmin v6.1.53 allows attackers to upload and execute arbitrary PHP files via a crafted URL to the /admin/api.plugs/script endpoint, leading to remote code execution. It affe...

CVE-2020-35296

HIGH CVSS 7.5 Mar 3, 2021

ThinkAdmin v6 has hardcoded default administrator credentials that allow attackers to gain full administrative dashboard access. This affects all installations of ThinkAdmin v6 that haven't changed th...

CVE-2024-10749

MEDIUM CVSS 5.0 Nov 4, 2024

This critical vulnerability in ThinkAdmin allows remote attackers to execute arbitrary code through insecure deserialization in the Plugs.php file. It affects ThinkAdmin versions up to 6.1.67, potenti...