Description
An arbitrary file upload vulnerability was discovered in MCMS 5.2.7, allowing an attacker to execute arbitrary code through a crafted ZIP file.
Remediation
References
https://gitee.com/mingSoft/MCMS/issues/I56AID
Related Vulnerabilities
CVE-2021-43309 Vulnerability in npm package uri-template-lite
CVE-2022-41404 Vulnerability in maven package org.ini4j:ini4j
CVE-2021-23438 Vulnerability in npm package mpath
CVE-2021-43570 Vulnerability in maven package com.starkbank.ellipticcurve:starkbank-ecdsa
CVE-2010-1330 Vulnerability in maven package org.jruby.jcodings:jcodings