Description
An arbitrary file upload vulnerability was discovered in MCMS 5.2.7, allowing an attacker to execute arbitrary code through a crafted ZIP file.
Remediation
References
https://gitee.com/mingSoft/MCMS/issues/I56AID
Related Vulnerabilities
CVE-2022-36157 Vulnerability in maven package com.xuxueli:xxl-job
CVE-2020-28443 Vulnerability in npm package sonar-wrapper
CVE-2022-0722 Vulnerability in maven package org.webjars.npm:parse-url
CVE-2022-29256 Vulnerability in npm package sharp
CVE-2021-27290 Vulnerability in maven package org.webjars.npm:ssri