216.73.216.236

CVE-2024-5518

· Published 30/05/2024 16:15 · Modified 30/05/2024 18:18

Labels: CVE-2024-5518 2024-05-30CVE-2024-5518CWE-434[email protected]

Essential information

Published
30/05/2024 16:15
Modified
30/05/2024 18:18
Author
Creator
CVSS
6.3 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CVSS metrics

Description

A vulnerability classified as critical has been found in itsourcecode Online Discussion Forum 1.0. This affects an unknown part of the file change_profile_picture.php. The manipulation of the argument image leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-266589 was assigned to this vulnerability.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References