Critical Vulnerability Information Vulnerability Type RCE (Remote Code Execution) Affected Product and Version Vendor: HuangDou Product: UTCMS Version: v9 Vulnerability Description In the page, users can remotely download zip packages and automatically extract them, leading to RCE. Analysis 1. Code Issue: - In , the URL concatenation for downloading contains security risks. - Attackers can modify to point to a remote URL and upload a file, enabling controlled file writing and execution. 2. Exploitation Process: - Users can remotely download zip packages and automatically extract them into the directory. - Attackers can upload a zip file containing a webshell, such as . - By modifying system configuration, attackers can set to point to their own remote server. 3. Example Request: POC