CVE-2024-24399 - Arbitrary File Upload in LEPTON v7.. — Exploiting the Language Backend
Security researchers have discovered a critical vulnerability: CVE-2024-24399 in LEPTON CMS v7... This flaw allows authenticated attackers to upload arbitrary PHP files via the backend