PT-2024-27157 · Unknown · Monstra Cms

Name of the Vulnerable Software and Affected Versions: Monstra CMS version 3.0.4 Description: An arbitrary file upload issue allows attackers to execute arbitrary code via uploading a crafted PHP file. Recommendations: For Monstra CMS version 3.0.4, at the moment, there is no information about a...

CVE-2021-40940

Monstra 3.0.4 does not filter the case of php, which leads to an unrestricted file upload vulnerability...