A vulnerability, which was classified as critical, has been found in HuankeMao SCRM up to 0.0.3. Affected by this issue is the function
upload_domain_verification_file
of the file WxkConfig.php of the component Administrator Backend. The manipulation of the argument domain_verification_file leads to unrestricted upload.
This vulnerability is handled as CVE-2024-9278. The attack may be launched remotely. Furthermore, there is an exploit available.