CVE-2022-22929: Arbitrary File Upload in Mingsoft MCMS

Severity: Critical

CVSS Score: 9.8

MCMS v5.2.4 was discovered to have an arbitrary file upload vulnerability in the New Template module, which allows attackers to execute arbitrary code via a crafted ZIP file.