Lucene search
K

23 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:31 a.m.6 views

CVE-2024-50658

Server-Side Template Injection SSTI was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the shippingAsBilling and firstname parameters in updateuserinfo.html file...

9.8CVSS8.2AI score0.00799EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:58 a.m.8 views

CVE-2024-50660

File Upload Bypass was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the file upload functionality...

9.8CVSS8AI score0.00857EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:58 a.m.6 views

CVE-2024-50659

Cross Site Scripting vulnerability iPublish Media Solutions AdPortal 3.0.39 allows a remote attacker to escalate privileges via the shippingAsBilling parameter in updateuserinfo.html...

6.1CVSS6.8AI score0.00289EPSS
Exploits0References1
OSV
OSV
added 2025/01/07 6:15 p.m.4 views

CVE-2024-50660

File Upload Bypass was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the file upload functionality...

9.8CVSS6AI score0.00857EPSS
Exploits0References3
OSV
OSV
added 2025/01/07 6:15 p.m.7 views

CVE-2024-50659

Cross Site Scripting vulnerability iPublish Media Solutions AdPortal 3.0.39 allows a remote attacker to escalate privileges via the shippingAsBilling parameter in updateuserinfo.html...

6.1CVSS5.8AI score0.00289EPSS
Exploits0References3
NVD
NVD
added 2025/01/07 6:15 p.m.25 views

CVE-2024-50660

File Upload Bypass was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the file upload functionality...

9.8CVSS0.00857EPSS
Exploits0References1
NVD
NVD
added 2025/01/07 6:15 p.m.11 views

CVE-2024-50659

Cross Site Scripting vulnerability iPublish Media Solutions AdPortal 3.0.39 allows a remote attacker to escalate privileges via the shippingAsBilling parameter in updateuserinfo.html...

6.1CVSS0.00289EPSS
Exploits0References1
OSV
OSV
added 2025/01/07 6:15 p.m.9 views

CVE-2024-50658

Server-Side Template Injection SSTI was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the shippingAsBilling and firstname parameters in updateuserinfo.html file...

9.8CVSS6.2AI score0.00799EPSS
Exploits0References3
NVD
NVD
added 2025/01/07 6:15 p.m.21 views

CVE-2024-50658

Server-Side Template Injection SSTI was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the shippingAsBilling and firstname parameters in updateuserinfo.html file...

9.8CVSS0.00799EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/07 12:0 a.m.5 views

PT-2025-2878 · Adportal · Adportal

Name of the Vulnerable Software and Affected Versions: AdPortal version 3.0.39 Description: A Server-Side Template Injection SSTI issue was found, allowing a remote attacker to execute arbitrary code via the shippingAsBilling and firstname parameters in the updateuserinfo.html file...

9.8CVSS7.5AI score0.00799EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/01/07 12:0 a.m.5 views

PT-2025-2880

Name of the Vulnerable Software and Affected Versions AdPortal version 3.0.39 Description A remote attacker can execute arbitrary code via the file upload functionality due to a File Upload Bypass issue. This allows attackers to bypass file upload checks and run arbitrary code. Recommendations Fo...

9.8CVSS6.5AI score0.00857EPSS
Exploits0References10
Vulnrichment
Vulnrichment
added 2025/01/07 12:0 a.m.14 views

CVE-2024-50660

File Upload Bypass was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the file upload functionality...

7.9AI score0.00857EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/07 12:0 a.m.6 views

iPublish AdPortal 代码注入漏洞

iPublish AdPortal is a self-service newspaper advertising platform from iPublish, Inc. A security vulnerability exists in iPublish AdPortal version 3.0.39, which stems from the presence of a file upload bypass that allows remote attackers to execute arbitrary code via the file upload feature...

9.8CVSS7.9AI score0.00857EPSS
Exploits0References4
CVE
CVE
added 2025/01/07 12:0 a.m.61 views

CVE-2024-50660

CVE-2024-50660 affects iPublish AdPortal 3.0.39 (AdPortal). The Red Hat, NVD, and related feeds confirm a File Upload Bypass vulnerability that enables a remote attacker to execute arbitrary code via the file upload functionality. The underlying issue is a bypass of upload checks allowing code ex...

9.8CVSS7.6AI score0.00857EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/01/07 12:0 a.m.6 views

iPublish AdPortal 代码注入漏洞

iPublish AdPortal is a self-service newspaper advertising platform from iPublish, Inc. A security vulnerability exists in iPublish AdPortal version 3.0.39 that stems from the presence of server-side template injection SSTI, which allows remote attackers to execute arbitrary code via the...

9.8CVSS8AI score0.00799EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/01/07 12:0 a.m.8 views

CVE-2024-50658

Server-Side Template Injection SSTI was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the shippingAsBilling and firstname parameters in updateuserinfo.html file...

8.4AI score0.00799EPSS
Exploits0References1
CVE
CVE
added 2025/01/07 12:0 a.m.63 views

CVE-2024-50658

AdPortal 3.0.39 is affected by a Server-Side Template Injection (SSTI) vulnerability that allows a remote attacker to execute arbitrary code via the shippingAsBilling and firstname parameters in updateuserinfo.html. The issue is verified across multiple sources (NVD, Red Hat, CNNVD, CVE lists, an...

9.8CVSS7.8AI score0.00799EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/01/07 12:0 a.m.6 views

PT-2025-2879

Name of the Vulnerable Software and Affected Versions iPublish Media Solutions AdPortal version 3.0.39 Description A Cross Site Scripting issue allows a remote attacker to escalate privileges via the shippingAsBilling parameter in the "updateuserinfo.html" endpoint. Recommendations For iPublish...

6.1CVSS6AI score0.00289EPSS
Exploits0References9
CVE
CVE
added 2025/01/07 12:0 a.m.48 views

CVE-2024-50659

CVE-2024-50659 affects iPublish Media Solutions AdPortal 3.0.39. It is a Cross Site Scripting issue where a remote attacker can escalate privileges via the shippingAsBilling parameter in updateuserinfo.html. Exploitation details are not provided beyond the high‑level description. Remediation info...

6.1CVSS6.5AI score0.00289EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/01/07 12:0 a.m.6 views

CVE-2024-50659

Cross Site Scripting vulnerability iPublish Media Solutions AdPortal 3.0.39 allows a remote attacker to escalate privileges via the shippingAsBilling parameter in updateuserinfo.html...

6.8AI score0.00289EPSS
Exploits0References1
Rows per page
Query Builder