brendontkl/My-CVEs

Releases0

This repository contains all the discovered CVEs found by myself as well as the relevant Proof-Of-Concept payloads for exploitation. Disclaimer that this is only for educational and research purposes only.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-40125 ↗	Sep 19, 2024Thursday, 19 September 2024, 19:15	9.8 CRITICAL	—
An arbitrary file upload vulnerability in the Media Manager function of Closed-Loop Technology CLESS Server v4.5.2 allows attackers to execute arbitrary code via uploading a crafted PHP file to the upload endpoint.