Security Advisory

CVE-2024-37868

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-10-04 00:00:00

Last updated 2024-10-04 22:16:36

Assigner mitre

State PUBLISHED

Description

File Upload vulnerability in Itsourcecode Online Discussion Forum Project v.1.0 allows a remote attacker to execute arbitrary code via the "sendreply.php" file, and the uploaded file was received using the "$- FILES" variable.

← Browse all CVEs View on cve.org ↗