CVE-2024-42991

Name of the Vulnerable Software and Affected Versions MCMS version 5.4.1

Description The issue is related to a front-end file upload vulnerability in MCMS, which can lead to remote command execution. This allows an attacker to execute commands remotely.

Recommendations For MCMS version 5.4.1, consider disabling the file upload feature as a temporary workaround until a patch is available. Restrict access to the file upload module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.