Macchiatto725

**Name of the Vulnerable Software and Affected Versions** ebCMS version 1.1.0 **Description** The issue allows a remote attacker to execute arbitrary code via the `upload type` parameter. This enables the attacker to potentially gain control over the system, leading to unauthorized access and malicious activities. **Recommendations** For ebCMS version 1.1.0, consider restricting access to the file upload feature until a patch is available. As a temporary workaround, avoid using the `upload type` parameter in the affected API endpoint.