Net-Hunter121

**Name of the Vulnerable Software and Affected Versions** CMSimple XH version 1.7.4 **Description** The issue is a remote code execution vulnerability. To exploit this, an attacker must use the `File` parameter to upload a PHP payload, which can result in a reverse shell from the vulnerable host. **Recommendations** For CMSimple XH version 1.7.4, consider restricting access to the `File` parameter to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.