CMS Made Simple 'modules/FileManager/postlet/javaUpload.php' Arbitrary File Upload Vulnerability

CMS Made Simple 'modules/FileManager/postlet/javaUpload.php' Arbitrary File Upload Vulnerability

CMS Made Simple is prone to a vulnerability that lets remote attackers upload and execute arbitrary script code because the application fails to properly validate the content of files being uploaded.

An attacker can leverage this issue to execute arbitrary code on an affected computer with the privileges of the webserver process.

CMS Made Simple 1.2.4 is vulnerable; other versions may also be affected.