YFCMF Remote Command Execution Vulnerability
YFCMF is Hunan Renren Technology Co., Ltd. developed a set of back-end content management framework based on ThinkPHP5.1. + foreign ACE1.40 UI template. A remote command execution vulnerability exists in YFCMF v2.3.1. An attacker can exploit this vulnerability by sending a constructed POST messag...