Unpatched PHP Voyager Flaws Leave Servers Open to One-Click RCE Exploits

Three unpatched vulnerabilities in the open-source PHP package Voyager allow attackers to achieve remote code execution on affected servers. These vulnerabilities, including arbitrary file write and reflected cross-site scripting flaws, enable attackers to execute malicious code and potentially steal sensitive information.

*****
Written on