CVE-2024-24520 Information

Description

An issue in Lepton CMS v.7.0.0 allows a local attacker to execute arbitrary code via the upgrade.php file in the languages place.

Reference

http://lepton.com https://github.com/xF9979/LEPTON-CMS