cve/CVE-2024-24520.md at 8932a8488dd21e852071ba599ad31c417dc6b90a - cve - 临风笛

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-11-28 18:48:49 +00:00

0xMarcio 8932a8488d Update CVE sources 2024-06-08 09:32

2024-06-08 09:32:58 +00:00

693 B

Raw Blame History

CVE-2024-24520

Description

An issue in Lepton CMS v.7.0.0 allows a local attacker to execute arbitrary code via the upgrade.php file in the languages place.

POC

Reference

https://packetstormsecurity.com/files/176647/Lepton-CMS-7.0.0-Remote-Code-Execution.html

Github