Description
File upload vulnerability in MCMS 5.0 allows attackers to execute arbitrary code via a crafted thumbnail. A different vulnerability than CVE-2022-31943.
Remediation
References
https://github.com/ming-soft/MCMS
https://github.com/ming-soft/MCMS/issues/42
Related Vulnerabilities
CVE-2021-21252 Vulnerability in maven package org.webjars.bower:jquery-validation
CVE-2022-25869 Vulnerability in npm package angular
CVE-2019-0230 Vulnerability in maven package org.apache.struts:struts2-core
CVE-2023-29517 Vulnerability in maven package org.xwiki.platform:xwiki-platform-office-viewer