An issue in lmxcms v.1.41 allows a remote attacker to execute arbitrary code via a crafted script to the admin.php file.Referenceshttp://www.lmxcms.com/https://gist.github.com/durian5201314/6507d1057c62f4bf93e740a631617434