sentcms 4.0.x allows remote attackers to cause arbitrary file uploads through an unauthorized file upload interface, resulting in php code execution in /admin/upload/upload.Referenceshttps://blog.hanayuzu.top/articles/37dacab4.html
