Description
An arbitrary file upload vulnerability in the component /ms/file/uploadTemplate.do of MCMS v5.2.4 allows attackers to execute arbitrary code.
Remediation
References
https://lycshub.github.io/2021/12/28/MCMS-vulnerabilities/
Related Vulnerabilities
CVE-2020-5397 Vulnerability in maven package org.springframework:spring-webmvc
CVE-2022-24725 Vulnerability in npm package shescape
CVE-2015-0265 Vulnerability in maven package org.apache.ranger:ranger
CVE-2017-16113 Vulnerability in npm package parsejson
CVE-2022-23944 Vulnerability in maven package org.apache.shenyu:shenyu-common