[feehi/cms] FeehiCMS has an arbitrary file upload vulnerability

There is an arbitrary file upload vulnerability in FeehiCMS 2.0.8.1 at the head image upload, that allows attackers to execute relevant PHP code.

References

• https://nvd.nist.gov/vuln/detail/CVE-2020-21516
• https://github.com/liufee/cms/issues/46
• https://github.com/liufee/cms/commit/ecbfb0ca77874ead5b6e79b96a5e1f94e67475a9
• https://github.com/liufee/cms/releases/tag/2.0.8.1
• https://github.com/advisories/GHSA-jj62-mc3m-j769