PublicCMS is an open source content management system (CMS) written in Java by PublicCMS, a Chinese company. a code injection vulnerability exists in PublicCMS, which stems from the productβs failure to secure the cmdarray parameter. An attacker can execute malicious code through this vulnerability.