Skip to content

fuzzlove/FUDforum-XSS-RCE

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
Code

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
November 11, 2019 23:33
November 12, 2019 10:52
November 12, 2019 10:51
November 13, 2019 15:56

FUDforum-XSS-RCE

FUDForum 3.0.9 - XSS / Remote Code Execution (CVE-2019-18873, CVE-2019-18839)

Multiple Stored XSS vulnerabilities have been found in FUDforum 3.0.9 that can result in remote code execution.

Stored XSS via username in forum: Info | Demo

Stored XSS via useragent in admin panel: Info | Demo

About

FUDForum 3.0.9 - XSS / Remote Code Execution (CVE-2019-18873, CVE-2019-18839)

Topics

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published