CVE-2024-37869

File Upload vulnerability in Itsourcecode Online Discussion Forum Project v.1.0 allows a remote attacker to execute arbitrary code via the "poster.php" file, and the uploaded file was received using the "$- FILES" variable...

CVE-2024-37869

The CVE-2024-37869 entry describes a file upload vulnerability in Itsourcecode Online Discussion Forum Project v.1.0. A remote attacker can trigger arbitrary code execution via the poster.php handler, with the uploaded payload received through the $_FILES variable. The available references indica...

CVE-2024-37869

File Upload vulnerability in Itsourcecode Online Discussion Forum Project v.1.0 allows a remote attacker to execute arbitrary code via the "poster.php" file, and the uploaded file was received using the "$- FILES" variable...

CVE-2024-37869

File Upload vulnerability in Itsourcecode Online Discussion Forum Project v.1.0 allows a remote attacker to execute arbitrary code via the "poster.php" file, and the uploaded file was received using the "$- FILES" variable...

PT-2024-27797 · Unknown · Itsourcode Online Discussion Forum Project

Name of the Vulnerable Software and Affected Versions: Itsourcecode Online Discussion Forum Project version 1.0 Description: The issue allows a remote attacker to execute arbitrary code via the "poster.php" file. The uploaded file is received using the $ FILES variable. This enables the attacker ...

Online Discussion Forum Code Issues Vulnerabilities

Online Discussion Forum is a forum website. A code issue exists in version 1.0 of Online Discussion Forum, which originates from /members/poster.php containing an unknown function that causes unrestricted uploads via the parameter image...

CVE-2022-37731

ftcms 2.1 poster.PHP has a XSS vulnerability. The attacker inserts malicious JavaScript code into the web page, causing the user / administrator to trigger malicious code when accessing...

CVE-2022-37731

Summary : CVE-2022-37731 affects ftcms 2.1, specifically the poster.PHP page, which is vulnerable to a reflected/DOM-based XSS that allows an attacker to inject malicious JavaScript code. When a user or administrator accesses the affected page, the injected script can execute in their browser. Th...

PHORTAIL 1.2.1 'poster.php' Multiple HTML Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/34038/info PHORTAIL is prone to multiple HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run in the context of the affected site...

CVE-2009-4888

Cross-site scripting XSS vulnerability in poster.php in PHortail 1.2.1 allows remote attackers to inject arbitrary web script or HTML via the 1 pseudo, 2 email, 3 ti, and 4 txt parameters...

CVE-2009-4888

CVE-2009-4888 is an XSS vulnerability in PHortail 1.2.1 affecting poster.php. The issue allows remote attackers to inject arbitrary web script or HTML via four parameters: (1) pseudo, (2) email, (3) ti, and (4) txt. Affected software: PHortail 1.2.1; vulnerability type: Cross‑site scripting. The ...

Phortail 1.2.1 Cross Site Scripting

PHORTAIL v1.2.1 XSS Vulnerability Module : PHORTAIL 1.2.1 download : http://www.phpscripts-fr.net/scripts/download.php?id=330 Vul : XSS Vulnerability file : poster.php Author : Jonathan Salwan Mail : submit AT shell-storm.org Web : http://www.shell-storm.org =Pseudo =E-mail alert'xss PoC';"=XSS...