12 matches found
CVE-2025-56704
LeptonCMS version 7.3.0 contains an arbitrary file upload vulnerability, which is caused by the lack of proper validation for uploaded files. An authenticated attacker can exploit this vulnerability by uploading a specially crafted ZIP/PHP file to execute arbitrary code...
EUVD-2025-202289
LeptonCMS version 7.3.0 contains an arbitrary file upload vulnerability, which is caused by the lack of proper validation for uploaded files. An authenticated attacker can exploit this vulnerability by uploading a specially crafted ZIP/PHP file to execute arbitrary code...
CVE-2025-56704
LeptonCMS version 7.3.0 contains an arbitrary file upload vulnerability, which is caused by the lack of proper validation for uploaded files. An authenticated attacker can exploit this vulnerability by uploading a specially crafted ZIP/PHP file to execute arbitrary code...
PT-2025-50106
Name of the Vulnerable Software and Affected Versions LeptonCMS version 7.3.0 Description LeptonCMS version 7.3.0 is affected by an arbitrary file upload issue due to insufficient validation of uploaded files. An authenticated attacker can exploit this by uploading a specially crafted ZIP/PHP fil...
CVE-2025-56704
LeptonCMS version 7.3.0 contains an arbitrary file upload vulnerability, which is caused by the lack of proper validation for uploaded files. An authenticated attacker can exploit this vulnerability by uploading a specially crafted ZIP/PHP file to execute arbitrary code...
LeptonCMS 安全漏洞
LeptonCMS is a content management system CMS from the Lepton Project. A security vulnerability exists in LeptonCMS version 7.3.0 that stems from insufficient file validation and could lead to the execution of arbitrary code...
LeptonCMS 安全漏洞
LeptonCMS is a content management system CMS from the Lepton Project. A security vulnerability exists in LeptonCMS version v.7.1.0, which originates from a vulnerability that could allow an authenticated, remote attacker to execute arbitrary code by uploading a crafted PHP file...
LeptonCMS 安全漏洞
LeptonCMS is a content management system CMS from the Lepton Project. A security vulnerability exists in LeptonCMS version v.7.1.0. A remote attacker can exploit this vulnerability to execute arbitrary code by uploading specially crafted PHP files to the save.php and config.php components...
LeptonCMS 安全漏洞
LeptonCMS is a content management system CMS from the Lepton Project. A security vulnerability exists in LeptonCMS version v.7.0.0 that originates from allowing a local attacker to execute arbitrary code via the upload.php file...
LeptonCMS 跨站脚本漏洞
LeptonCMS is a content management system CMS. A cross-site scripting vulnerability exists in LeptonCMS version 4.7.0, which stems from the lack of effective filtering and escaping of user-supplied data in the backend/pages/modify.php file, which can be exploited by an attacker to execute arbitrar...
CVE-2020-12705
Multiple cross-site scripting XSS vulnerabilities exist in LeptonCMS before 4.6.0...
LeptonCMS Cross-Site Scripting Vulnerability
LeptonCMS is an easy to use content management system with integrated jquery library for freelance designers, php developers and web agents. LeptonCMS suffers from a cross-site scripting vulnerability that stems from a lack of proper validation of client-side data by the web application. An...