Monstra 3.0.4 Local File Inclusion Vulnerability

Monstra 3.0.4 Local File Inclusion Vulnerability

CVE-2020-25414 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

A local file inclusion vulnerability was discovered in the captcha function in Monstra 3.0.4 which allows remote attackers to execute arbitrary PHP code.

Learn more about our Web Application Penetration Testing UK.