Luocms v2.0 is an article management system. Luocms v2.0 is vulnerable to an arbitrary file-writing vulnerability that results from insufficient validation of file_content submissions and filenamede filenames, which can be exploited to write arbitrary shell files via /admin/templates/template_manage .php to write arbitrary shell files.