Enviar #603349: code-projects Simple Forum V1.0 Arbitrary File Uploadinformación

Títulocode-projects Simple Forum V1.0 Arbitrary File Upload
DescripciónDuring the security assessment of the 'Simple Forum' application, a critical arbitrary file upload vulnerability was discovered in the /forum1.php file. Due to the lack of input validation, unauthenticated users can send specially crafted HTTP requests to upload malicious scripts. These scripts are then accessible and executable via a web browser, enabling the attacker to fully compromise the server environment.
Fuente⚠️ https://github.com/ez-lbz/poc/issues/18
Usuario
 ez-lbz (UID 87033)
Sumisión2025-06-24 17:02 (hace 12 meses)
Moderación2025-06-27 20:49 (3 days later)
EstadoAceptado
Entrada de VulDB314291 [code-projects Simple Forum 1.0 /forum1.php Archivo escalada de privilegios]
Puntos20

AnteriorVisión De ConjuntoPróximo

Want to stay up to date on a daily basis?

Enable the mail alert feature now!