Leptoncms@7.0.0 Security Vulnerabilities and Issues — Leptoncms@7.0.0 CVE List

Lucene search

Lepton-cmsLeptoncms7.0.0

2 matches found

CVE•added 2024/01/25 9:15 p.m.•160 views

CVE-2024-24399

An arbitrary file upload vulnerability in LEPTON v7.0.0 allows authenticated attackers to execute arbitrary PHP code by uploading this code to the backend/languages/index.php languages area.

7.2CVSS7.2AI score0.01678EPSS

CVE•added 2024/03/21 2:52 a.m.•26 views

CVE-2024-24520

An issue in Lepton CMS v.7.0.0 allows a local attacker to execute arbitrary code via the upgrade.php file in the languages place.

7.8CVSS7.5AI score0.00153EPSS