Xrun6

**Name of the Vulnerable Software and Affected Versions** TPCMS version 3.2 **Description** The issue is related to an arbitrary file upload vulnerability in the Add File function, allowing attackers to execute arbitrary code via a crafted PHP file. **Recommendations** For TPCMS version 3.2, consider disabling the Add File function until a patch is available to prevent exploitation. Restrict access to the file upload feature to minimize the risk of arbitrary code execution.