FineReport is a zero-code, drag-and-drop enterprise web reporting tool that rapidly integrates multi-source data and flexibly creates complex Chinese-style reports, enabling data analysis, data entry, permission control, and multi-device display. FineReport's fr_remote_design endpoint contains a file-upload vulnerability that allows attackers to upload files carrying malicious payloads. This rule supports to defend the A6: Vulnerabe and Outdated Components of OWASP Top 10 - 2021. Other reference:None