[HIGH] OpenSTAManager contains an arbitrary file upload vulnerability in its module update functionality

PKSA-4d6v-4cnw-287h CVE-2026-38751 GHSA-rm34-fg4m-39mw

Affected package: devcode-it/openstamanager

Affected version: <=2.10-beta

Reported by:
GitHub