Huajiuqi

**Name of the Vulnerable Software and Affected Versions** ThinkCMF version 6.0.9 **Description** The issue concerns a file upload vulnerability via the UeditorController.php. **Recommendations** For ThinkCMF version 6.0.9, consider disabling the file upload functionality via UeditorController.php until a patch is available. Restrict access to the UeditorController.php to minimize the risk of exploitation.