sorzs

## gist:e3913b814e2e5548aa66de6c25b0510a
[CVE ID]
CVE-2026-26682
[VERSION]
<=0.1.6
[PRODUcT]
fastcms
[PROBLEM TYPE]
Remote Code Execution
[DESCRIPTION]
An issue in fastCMS before v0.1.6 allows an attacker to execute arbitrary code via a crafted plugin upload.

## gist:40dbc60504ab6cb0b592d9010d5ae8af
[CVE ID]
CVE-2025-70821

[VERSION]
<=5.5.0

[PRODUcT]
renren-security

[PROBLEM TYPE]

## gist:c67a3dcaa9adb49266d5ff52a04d904b
[CVE ID]
CVE-2025-50857
[VERSION]
21.6.beta >= ZenTaoPMS >= 18.11
[PRODUcT]
ZenTaoPMS
[PROBLEM TYPE]
Remote Code Execution
[DESCRIPTION]
An issue in ZenTaoPMS open-source edition from version 18.11 to 21.6.beta allows an attacker to execute arbitrary code via a crafted malicious file upload.
	[CVE ID]
	CVE-2026-26682
	[VERSION]
	<=0.1.6
	[PRODUcT]
	fastcms
	[PROBLEM TYPE]
	Remote Code Execution
	[DESCRIPTION]
	An issue in fastCMS before v0.1.6 allows an attacker to execute arbitrary code via a crafted plugin upload.
	[CVE ID]
	CVE-2025-70821

	[VERSION]
	<=5.5.0

	[PRODUcT]
	renren-security

	[PROBLEM TYPE]
	[CVE ID]
	CVE-2025-50857
	[VERSION]
	21.6.beta >= ZenTaoPMS >= 18.11
	[PRODUcT]
	ZenTaoPMS
	[PROBLEM TYPE]
	Remote Code Execution
	[DESCRIPTION]
	An issue in ZenTaoPMS open-source edition from version 18.11 to 21.6.beta allows an attacker to execute arbitrary code via a crafted malicious file upload.