File Upload Vulnerability in Online Discussion Forum Project v.1.0 Allows Remote Code Execution
CVE-2024-37869
8.8HIGH
What is CVE-2024-37869?
A vulnerability has been identified within the Itsourcecode Online Discussion Forum Project version 1.0 that permits remote attackers to execute arbitrary code by exploiting improper validation in the 'poster.php' file. This occurs when an attacker uploads a malicious file using the '$_FILES' variable, bypassing security measures. Successful exploitation could enable an attacker to take control of the affected system, heightening the risk of further malicious activities.