Baijicms v4 exists to contain an arbitrary file upload vulnerability.
baijiacms project baijiacms 4_1_4_20170105