Security Advisory
CVE-2024-25414
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
An arbitrary file upload vulnerability in /admin/upgrade of CSZ CMS v1.3.0 allows attackers to execute arbitrary code via uploading a crafted Zip file.