CVE-2024-24520

Published March 21st, 2024

View on NVD ↗

CVSS v3

7.8

HIGH

CVSS v2

N/A

Affected

1

PROJECT

Description

An issue in Lepton CMS v.7.0.0 allows a local attacker to execute arbitrary code via the upgrade.php file in the languages place.

xF-9979/CVE-2024-24520UNAVAILABLE

Arbitrary code execution vulnerability

GitHub