AuraCMS is prone to a remote vulnerability that lets attackers run arbitrary script code because it fails to properly sanitize user-supplied input. The risk is MEDIUM. Exploiting this issue could allow attackers to upload and execute arbitrary script code in the context of the affected webserver process.
More...