ICagenda Product Security Update Advisory (CVE-2026-48939)
Overview
A security update has been released to address a vulnerability in the iCagenda product. The vulnerability, identified as CVE-2026-48939, allows for remote code execution through arbitrary file upload.
Affected Versions
- iCagenda versions 3.2.1 Through 3.9.14.
- ICagenda versions 4.0.0 Through 4.0.7.
Resolution
A Vulnerability Patch is available in the latest update. You must update to the following versions or higher:
- iCagenda 3.9.15 Or higher.
- ICagenda 4.0.8 Or higher.
Note
Follow the instructions on the reference site to update to the latest version that includes the Vulnerability Patch.