Monstra 3.0.4 Local File Inclusion Vulnerability
CVE-2020-25414 · CRITICAL Severity
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
A local file inclusion vulnerability was discovered in the captcha function in Monstra 3.0.4 which allows remote attackers to execute arbitrary PHP code.
Learn more about our Web Application Penetration Testing UK.