ICagenda Product Security Update Advisory (CVE-2026-48939)

ICagenda Product Security Update Advisory (CVE-2026-48939)

Overview


A security update has been released to address a vulnerability in the iCagenda product. The vulnerability, identified as CVE-2026-48939, allows for remote code execution through arbitrary file upload.

Affected Versions


  • iCagenda versions 3.2.1 Through 3.9.14.
  • ICagenda versions 4.0.0 Through 4.0.7.

Resolution


A Vulnerability Patch is available in the latest update. You must update to the following versions or higher:

  • iCagenda 3.9.15 Or higher.
  • ICagenda 4.0.8 Or higher.

Note


Follow the instructions on the reference site to update to the latest version that includes the Vulnerability Patch.