THREAT OPS › CVEs › CVE-2026-48939
CVE-2026-48939 — iCagenda Unrestricted Upload of File with Dangerous Type Vulnerability
iCagenda contains an unrestricted upload of file with dangerous type vulnerability that allows the upload of arbitrary files in the file attachment feature, ultimately resulting in PHP code upload and execution.
Vulnerability details
- Affected productsiCagenda
- KEV remediation due2026-07-13