Security Advisory

CVE-2024-25414

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-16 00:00:00
Last updated 2025-03-14 18:54:24
Assigner mitre
State PUBLISHED

Description

An arbitrary file upload vulnerability in /admin/upgrade of CSZ CMS v1.3.0 allows attackers to execute arbitrary code via uploading a crafted Zip file.