Severity: Critical
CVSS Score: 9.8
funadmin v3.3.2 and v3.3.3 are vulnerable to Insecure file upload via the plugins install.