capture0x/leptoncms

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-24399 ↗	Jan 25, 2024Thursday, 25 January 2024, 21:15	7.2 HIGH	—
An arbitrary file upload vulnerability in LEPTON v7.0.0 allows authenticated attackers to execute arbitrary PHP code by uploading this code to the backend/languages/index.php languages area.