Monstra CMS 3.0.4 allows users to upload arbitrary files, which leads to remote command execution on the server, for example because .php (lowercase) is blocked but .PHP (uppercase) is not.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
monstra monstra 3.0.4 |