An arbitrary file upload vulnerability in Jizhicms v1.5 allows malicious users to execute arbitrary code via a crafted .jpg file which is later changed to a PHP file.
jizhicms jizhicms 1.5