Online Discussion Forum Project

Online Discussion Forum

5 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2024-52676

Exploit
  • EPSS 0.11%
  • Veröffentlicht 04.12.2024 17:15:15
  • Zuletzt bearbeitet 17.04.2025 01:35:49

Itsourcecode Online Discussion Forum Project v.1.0.0 is vulnerable to Cross Site Scripting (XSS) via /bcc_forum/members/home.php.

9.8

CVE-2024-5733

Exploit
  • EPSS 0.2%
  • Veröffentlicht 07.06.2024 12:15:09
  • Zuletzt bearbeitet 21.11.2024 09:48:15

A vulnerability was found in itsourcecode Online Discussion Forum 1.0. It has been rated as critical. This issue affects some unknown processing of the file register_me.php. The manipulation of the argument eaddress leads to sql injection. The attack...

8.8

CVE-2024-5734

Exploit
  • EPSS 0.15%
  • Veröffentlicht 07.06.2024 12:15:09
  • Zuletzt bearbeitet 21.11.2024 09:48:15

A vulnerability classified as critical has been found in itsourcecode Online Discussion Forum 1.0. Affected is an unknown function of the file /members/poster.php. The manipulation of the argument image leads to unrestricted upload. It is possible to...

9.8

CVE-2022-31296

  • EPSS 6.31%
  • Veröffentlicht 17.06.2022 13:15:15
  • Zuletzt bearbeitet 21.11.2024 07:04:17

Online Discussion Forum Site 1 was discovered to contain a blind SQL injection vulnerability via the component /odfs/posts/view_post.php.

5.4

CVE-2020-28141

Exploit
  • EPSS 0.52%
  • Veröffentlicht 19.04.2021 16:15:12
  • Zuletzt bearbeitet 21.11.2024 05:22:24

The messaging subsystem in the Online Discussion Forum 1.0 is vulnerable to XSS in the message body. An authenticated user can send messages to arbitrary users on the system that include javascript that will execute when viewing the messages page.