A vulnerability was found in SourceCodester Online Discussion Forum Site 1.0. It has been rated as critical. This issue affects some unknown processing of the file registerH.php. The manipulation of the argument ima leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-264455.
References
| Link | Resource |
|---|---|
| https://github.com/CveSecLook/cve/issues/27 | Exploit Third Party Advisory |
| https://vuldb.com/?ctiid.264455 | Permissions Required VDB Entry |
| https://vuldb.com/?id.264455 | Third Party Advisory VDB Entry |
| https://vuldb.com/?submit.333477 | Third Party Advisory VDB Entry |
| https://github.com/CveSecLook/cve/issues/27 | Exploit Third Party Advisory |
| https://vuldb.com/?ctiid.264455 | Permissions Required VDB Entry |
| https://vuldb.com/?id.264455 | Third Party Advisory VDB Entry |
| https://vuldb.com/?submit.333477 | Third Party Advisory VDB Entry |
Configurations
History
10 Feb 2025, 13:20
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Razormist
Razormist online Discussion Forum Site |
|
| References | () https://github.com/CveSecLook/cve/issues/27 - Exploit, Third Party Advisory | |
| References | () https://vuldb.com/?ctiid.264455 - Permissions Required, VDB Entry | |
| References | () https://vuldb.com/?id.264455 - Third Party Advisory, VDB Entry | |
| References | () https://vuldb.com/?submit.333477 - Third Party Advisory, VDB Entry | |
| CPE | cpe:2.3:a:razormist:online_discussion_forum_site:1.0:*:*:*:*:*:*:* |
Information
Published : 2024-05-16 00:15
Updated : 2025-02-10 13:20
NVD link : CVE-2024-4920
Mitre link : CVE-2024-4920
CVE.ORG link : CVE-2024-4920
JSON object : View
Products Affected
razormist
- online_discussion_forum_site
CWE
CWE-434
Unrestricted Upload of File with Dangerous Type