Skip to content

FUDForum 3.0.9 - XSS / Remote Code Execution (CVE-2019-18873, CVE-2019-18839)

Notifications You must be signed in to change notification settings

fuzzlove/FUDforum-XSS-RCE

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

47 Commits
 
 
 
 
 
 
 
 

Repository files navigation

FUDforum-XSS-RCE

FUDForum 3.0.9 - XSS / Remote Code Execution (CVE-2019-18873, CVE-2019-18839)

Multiple Stored XSS vulnerabilities have been found in FUDforum 3.0.9 that can result in remote code execution.

Stored XSS via username in forum: Info | Demo

Stored XSS via useragent in admin panel: Info | Demo

About

FUDForum 3.0.9 - XSS / Remote Code Execution (CVE-2019-18873, CVE-2019-18839)

Topics

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published