ClassCMS <=4.8 is vulnerable to file inclusion in the nowView method in/class/cms/cms.php, which can include a file uploaded to the/class/template directory to execute PHP code.
{ "versions": [ { "introduced": "0" }, { "last_affected": "4.8" } ] }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-48180.json"