A vulnerability, which was classified as critical, was found in CSZ CMS 1.3.0. This affects an unknown part of the file /admin/upgrade of the component ZIP File Handler. The manipulation leads to unrestricted upload.
This vulnerability is uniquely identified as CVE-2024-25414. The attack can only be initiated within the local network. There is no exploit available.