Summary: An arbitrary command execution vulnerability exists in the fopen() function of file writes of UCMS v1.4.8, where an attacker can gain access to the server.Published: Friday, October 23, 2020 - 18:15cvss: 5.0