CVE-2024-40125
Published
CVSS v3
9.8
CRITICAL
CVSS v2
N/A
Affected
1
PROJECT
Description
An arbitrary file upload vulnerability in the Media Manager function of Closed-Loop Technology CLESS Server v4.5.2 allows attackers to execute arbitrary code via uploading a crafted PHP file to the upload endpoint.
This repository contains all the discovered CVEs found by myself as well as the relevant Proof-Of-Concept payloads for exploitation. Disclaimer that this is only for educational and research purposes only.
GitHub