Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lepton vulnerabilities and exploits
(subscribe to this query)
312
VMScore
CVE-2020-29240
Lepton-CMS 4.7.0 is affected by cross-site scripting (XSS). An attacker can inject the XSS payload in the URL field of the admin page and each time an admin visits the Menu-Pages-Pages Overview section, the XSS will be triggered.
Lepton-cms Leptoncms 4.7.0
NA
CVE-2012-10003
A vulnerability, which was classified as problematic, has been found in ahmyi RivetTracker. This issue affects some unknown processing. The manipulation of the argument $_SERVER['PHP_SELF'] leads to cross site scripting. The attack may be initiated remotely. The patch i...
Rivettracker Project Rivettracker
NA
CVE-2024-29514
File Upload vulnerability in lepton v.7.1.0 allows a remote authenticated malicious users to execute arbitrary code via uploading a crafted PHP file.
NA
CVE-2024-24520
An issue in Lepton CMS v.7.0.0 allows a local malicious user to execute arbitrary code via the upgrade.php file in the languages place.
NA
CVE-2024-29515
File Upload vulnerability in lepton v.7.1.0 allows a remote authenticated malicious users to execute arbitrary code via uploading a crafted PHP file to the save.php and config.php component.
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3