Lucene search
K

8 matches found

Check Point Advisories
Check Point Advisories
added 2019/12/05 12:0 a.m.22 views

FUDForum Remote Code Execution (CVE-2019-18873)

A remote code execution vulnerability exists in FUDForum. Successful exploitation could result in execution of arbitrary code on the affected system...

8.5CVSS3.9AI score0.08154EPSS
Exploits6
exploitpack
exploitpack
added 2019/11/13 12:0 a.m.101 views

FUDForum 3.0.9 - Remote Code Execution

FUDForum 3.0.9 - Remote Code Execution Exploit Title : FUDForum 3.0.9 - Remote Code Execution Date: 2019-10-26 Exploit Author: liquidsky JMcPeters Vulnerable Software: FUDForum 3.0.9 Vendor Homepage: https://sourceforge.net/projects/fudforum/ Version: 3.0.9 Software Link:...

8.5CVSS9.5AI score0.08154EPSS
Exploits6
0day.today
0day.today
added 2019/11/13 12:0 a.m.115 views

FUDForum 3.0.9 - Remote Code Execution Exploit

Exploit for php platform in category web applications Exploit Title : FUDForum 3.0.9 - Remote Code Execution Date: 2019-10-26 Exploit Author: liquidsky JMcPeters Vulnerable Software: FUDForum 3.0.9 Vendor Homepage: https://sourceforge.net/projects/fudforum/ Version: 3.0.9 Software Link:...

8.5CVSS0.08154EPSS
Exploits6
Exploit DB
Exploit DB
added 2019/11/13 12:0 a.m.287 views

FUDForum 3.0.9 - Remote Code Execution

Exploit Title : FUDForum 3.0.9 - Remote Code Execution Date: 2019-10-26 Exploit Author: liquidsky JMcPeters Vulnerable Software: FUDForum 3.0.9 Vendor Homepage: https://sourceforge.net/projects/fudforum/ Version: 3.0.9 Software Link:...

9CVSS9.4AI score0.08154EPSS
Exploits6
Cvelist
Cvelist
added 2019/11/12 1:1 a.m.20 views

CVE-2019-18873

FUDForum 3.0.9 is vulnerable to Stored XSS via the User-Agent HTTP header. This may result in remote code execution. An attacker can use a user account to fully compromise the system via a GET request. When the admin visits user information under "User Manager" in the control panel, the payload...

9.1AI score0.08154EPSS
Exploits6References2
CVE
CVE
added 2019/11/12 1:1 a.m.75 views

CVE-2019-18873

FUDForum 3.0.9 is affected by CVE-2019-18873 (and related CVE in sources) via Stored XSS in the User-Agent header, enabling remote code execution. The issue arises in admsession.php and admuser.php, and requires an authenticated user to trigger the attack; when an admin visits the affected area u...

9CVSS8.9AI score0.08154EPSS
Exploits6References2Affected Software1
Packet Storm
Packet Storm
added 2019/11/12 12:0 a.m.95 views

FUDForum 3.0.9 Code Execution / Cross Site Scripting

// Exploit Title : FUDForum 3.0.9 - Stored XSS / Remote Code Execution // Date : 10/26/19 // Exploit Author : liquidsky JMcPeters // Vulnerable Software : FUDForum 3.0.9 // Vendor Homepage : https://sourceforge.net/projects/fudforum/ // Version : 3.0.9 // Software Link :...

9.2AI score0.08154EPSS
Exploits7
GithubExploit
GithubExploit
added 2019/10/27 3:7 a.m.94 views

Exploit for OS Command Injection in Fudforum

FUDforum-XSS-RCE FUDForum 3.0.9 - XSS / Remote Code Execution...

9CVSS3.7AI score0.08154EPSS
Exploits7
Rows per page
Query Builder