4 matches found
CVE-2024-50658
Server-Side Template Injection SSTI was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the shippingAsBilling and firstname parameters in updateuserinfo.html file...
CVE-2024-50658
Server-Side Template Injection SSTI was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the shippingAsBilling and firstname parameters in updateuserinfo.html file...
CVE-2024-50658
Server-Side Template Injection SSTI was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the shippingAsBilling and firstname parameters in updateuserinfo.html file...
CVE-2024-50658
AdPortal 3.0.39 is affected by a Server-Side Template Injection (SSTI) vulnerability that allows a remote attacker to execute arbitrary code via the shippingAsBilling and firstname parameters in updateuserinfo.html. The issue is verified across multiple sources (NVD, Red Hat, CNNVD, CVE lists, an...