An issue exists in WUZHICMS version 4.1.0, allows an malicious user to execute arbitrary code and obtain sensitive information via the index.php file.