2 matches found
CVE-2024-36774
An arbitrary file upload vulnerability in Monstra CMS v3.0.4 allows attackers to execute arbitrary code via uploading a crafted PHP file...
CVE-2024-36774
CVE-2024-36774 describes an arbitrary file upload vulnerability in Monstra CMS v3.0.4 that enables attackers to execute arbitrary PHP code by uploading a crafted PHP file. The issue targets the CMS itself and arises from an upload path that allows PHP payloads. Estimated impact per CVSS vectors i...