MCMS v5.2.4 exists to have a hardcoded shiro-key, allowing malicious users to exploit the key and execute arbitrary code.
mingsoft mcms 5.2.4