Critical severity9.8NVD Advisory· Published Feb 16, 2024· Updated Jun 17, 2026
CVE-2024-25414
CVE-2024-25414
Description
An arbitrary file upload vulnerability in /admin/upgrade of CSZ CMS v1.3.0 allows attackers to execute arbitrary code via uploading a crafted Zip file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- CSZ/CMSdescription
Patches
Vulnerability mechanics
References
1- packetstormsecurity.com/files/175889/CSZ-CMS-1.3.0-Shell-Upload.htmlnvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.