23 matches found
CVE-2024-50658
Server-Side Template Injection SSTI was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the shippingAsBilling and firstname parameters in updateuserinfo.html file...
CVE-2024-50660
File Upload Bypass was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the file upload functionality...
CVE-2024-50659
Cross Site Scripting vulnerability iPublish Media Solutions AdPortal 3.0.39 allows a remote attacker to escalate privileges via the shippingAsBilling parameter in updateuserinfo.html...
CVE-2024-50660
File Upload Bypass was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the file upload functionality...
CVE-2024-50659
Cross Site Scripting vulnerability iPublish Media Solutions AdPortal 3.0.39 allows a remote attacker to escalate privileges via the shippingAsBilling parameter in updateuserinfo.html...
CVE-2024-50660
File Upload Bypass was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the file upload functionality...
CVE-2024-50659
Cross Site Scripting vulnerability iPublish Media Solutions AdPortal 3.0.39 allows a remote attacker to escalate privileges via the shippingAsBilling parameter in updateuserinfo.html...
CVE-2024-50658
Server-Side Template Injection SSTI was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the shippingAsBilling and firstname parameters in updateuserinfo.html file...
CVE-2024-50658
Server-Side Template Injection SSTI was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the shippingAsBilling and firstname parameters in updateuserinfo.html file...
PT-2025-2878 · Adportal · Adportal
Name of the Vulnerable Software and Affected Versions: AdPortal version 3.0.39 Description: A Server-Side Template Injection SSTI issue was found, allowing a remote attacker to execute arbitrary code via the shippingAsBilling and firstname parameters in the updateuserinfo.html file...
PT-2025-2880
Name of the Vulnerable Software and Affected Versions AdPortal version 3.0.39 Description A remote attacker can execute arbitrary code via the file upload functionality due to a File Upload Bypass issue. This allows attackers to bypass file upload checks and run arbitrary code. Recommendations Fo...
CVE-2024-50660
File Upload Bypass was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the file upload functionality...
iPublish AdPortal 代码注入漏洞
iPublish AdPortal is a self-service newspaper advertising platform from iPublish, Inc. A security vulnerability exists in iPublish AdPortal version 3.0.39, which stems from the presence of a file upload bypass that allows remote attackers to execute arbitrary code via the file upload feature...
CVE-2024-50660
CVE-2024-50660 affects iPublish AdPortal 3.0.39 (AdPortal). The Red Hat, NVD, and related feeds confirm a File Upload Bypass vulnerability that enables a remote attacker to execute arbitrary code via the file upload functionality. The underlying issue is a bypass of upload checks allowing code ex...
iPublish AdPortal 代码注入漏洞
iPublish AdPortal is a self-service newspaper advertising platform from iPublish, Inc. A security vulnerability exists in iPublish AdPortal version 3.0.39 that stems from the presence of server-side template injection SSTI, which allows remote attackers to execute arbitrary code via the...
CVE-2024-50658
Server-Side Template Injection SSTI was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the shippingAsBilling and firstname parameters in updateuserinfo.html file...
CVE-2024-50658
AdPortal 3.0.39 is affected by a Server-Side Template Injection (SSTI) vulnerability that allows a remote attacker to execute arbitrary code via the shippingAsBilling and firstname parameters in updateuserinfo.html. The issue is verified across multiple sources (NVD, Red Hat, CNNVD, CVE lists, an...
PT-2025-2879
Name of the Vulnerable Software and Affected Versions iPublish Media Solutions AdPortal version 3.0.39 Description A Cross Site Scripting issue allows a remote attacker to escalate privileges via the shippingAsBilling parameter in the "updateuserinfo.html" endpoint. Recommendations For iPublish...
CVE-2024-50659
CVE-2024-50659 affects iPublish Media Solutions AdPortal 3.0.39. It is a Cross Site Scripting issue where a remote attacker can escalate privileges via the shippingAsBilling parameter in updateuserinfo.html. Exploitation details are not provided beyond the high‑level description. Remediation info...
CVE-2024-50659
Cross Site Scripting vulnerability iPublish Media Solutions AdPortal 3.0.39 allows a remote attacker to escalate privileges via the shippingAsBilling parameter in updateuserinfo.html...