Lucene search
Leptoncms Security Vulnerabilities
cve
An arbitrary file upload vulnerability in LEPTON v7.0.0 allows authenticated attackers to execute arbitrary PHP code by uploading this code to the backend/languages/index.php languages...
7.2CVSS
7.2AI Score
0.001EPSS
2024-01-25 09:15 PM
95
cve
Cross Site Scripting (XSS) vulnerability in backend/pages/modify.php in Lepton-CMS version 4.7.0, allows remote attackers to execute arbitrary...
6.1CVSS
6.1AI Score
0.001EPSS
2023-08-11 02:15 PM
8
cve
Lepton-CMS 4.7.0 is affected by cross-site scripting (XSS). An attacker can inject the XSS payload in the URL field of the admin page and each time an admin visits the Menu-Pages-Pages Overview section, the XSS will be...
4.8CVSS
4.8AI Score
0.001EPSS
2020-12-02 05:15 PM
43
6.1CVSS
6.1AI Score
0.001EPSS
2020-05-07 08:15 PM
45