Description
An arbitrary file upload vulnerability was discovered in MCMS 5.2.7, allowing an attacker to execute arbitrary code through a crafted ZIP file.
Remediation
References
https://gitee.com/mingSoft/MCMS/issues/I56AID
Related Vulnerabilities
CVE-2021-36774 Vulnerability in maven package org.apache.kylin:kylin-core-common
CVE-2020-8268 Vulnerability in npm package json8-merge-patch
CVE-2021-4264 Vulnerability in maven package org.webjars.npm:dustjs-linkedin
CVE-2021-20086 Vulnerability in npm package jquery-bbq
CVE-2020-10693 Vulnerability in maven package org.hibernate:hibernate-validator