ZCMS v20170206 exists to contain a file inclusion vulnerability via index.php?m=home&c=home&a=sp_set_config.
zcms project zcms 20170206