CVE-2023-40825 Information

Description

An issue in Perfree PerfreeBlog v.3.1.2 allows a remote attacker to execute arbitrary code via crafted plugin listed in admin/plugin/access/list.

Reference

https://github.com/perfree/PerfreeBlog/issues/15