OneCMS Arbitrary File Upload Vulnerability and Multiple SQL-injection Vulnerabilities

OneCMS Arbitrary File Upload Vulnerability and Multiple SQL-injection Vulnerabilities

Solution:
The vendor released OneCMS 2.5 to address this issue. Please see the references for more information.

insanevisions OneCMS 2.4

insanevisions OneCMS_v2.5.zip
http://downloads.sourceforge.net/onecms/OneCMS_v2.5.zip?modtime=120043 9909&big_mirror=0