Full title: Lektor Static CMS 3.3.10 Arbitrary File Upload / Remote Code Execution Vulnerabilities Category: web applications Platform: multiple Lektor Static CMS version 3.3.10 suffers from an arbitrary file upload vulnerability that can be leveraged to achieve remote code execution. # 0day.today @ http://0day.today/