There is a PHP file inclusion vulnerability in the template configuration of eyoucms v1.6.4, allowing attackers to execute code or system commands through a carefully crafted malicious payload.
https://github.com/Nacl122/CVEReport/blob/main/CVE-2023-42286/CVE-2023-42286.md