The provided text describes an arbitrary file-upload vulnerability in RunCMS, allowing attackers to execute arbitrary code in the context of the webserver process. It references a BID (Bugtraq ID) and a GitLab link to a PHP exploit but does not include actual exploit code.
Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target:RunCMS (version unspecified)
No auth needed
Prerequisites:Access to the file upload functionality in RunCMS