CScms 4.1 allows arbitrary file upload by (for example) adding the php extension to the default filetype list (gif, jpg, png), and then providing a .php pathname within fileurl JSON data.
9.8CVSS
9.3AI Score
0.008EPSS
CScms 4.1 allows remote code execution, as demonstrated by 1');eval($_POST[cmd]);# in Web Name to upload\plugins\sys\Install.php.
9.8CVSS
9.5AI Score
0.05EPSS
An issue in the user login box of CSCMS v4.0 allows attackers to hijack user accounts via brute force attacks.
9.8CVSS
9.3AI Score
0.003EPSS
A remote code execution (RCE) vulnerability in the \Playsong.php component of cscms v4.1 allows attackers to execute arbitrary commands.
9.8CVSS
9.8AI Score
0.008EPSS
9.8CVSS
9.9AI Score
0.002EPSS
9.8CVSS
9.9AI Score
0.002EPSS