E0Mljao

Name of the Vulnerable Software and Affected Versions: Feehi CMS versions 2.0.8 and below Description: An arbitrary file upload issue allows attackers to execute arbitrary code via a crafted PHP file. Recommendations: For Feehi CMS versions 2.0.8 and below, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Jfinal CMS version 5.1.0 **Description** The issue is related to improper access control, allowing attackers to access sensitive information. This can be done via the "/classes/conf/db.properties" and "config=filemanager.config.js" parameters. **Recommendations** For Jfinal CMS version 5.1.0, consider restricting access to the "/classes/conf/db.properties" and "config=filemanager.config.js" parameters to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PublicCMS version 4.0 **Description** An issue in the BAT file parameters allows attackers to execute arbitrary code. **Recommendations** For PublicCMS version 4.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.