Vulnerability CVE-2024-25414


Published: 2024-02-16

Description:
An arbitrary file upload vulnerability in /admin/upgrade of CSZ CMS v1.3.0 allows attackers to execute arbitrary code via uploading a crafted Zip file.

 References:
https://packetstormsecurity.com/files/175889/CSZ-CMS-1.3.0-Shell-Upload.html
https://github.com/capture0x/CSZ_CMS

Copyright 2026, cxsecurity.com

 

Back to Top