CVE-2024-37868 Information

Description

File Upload vulnerability in Itsourcecode Online Discussion Forum Project v.1.0 allows a remote attacker to execute arbitrary code via the \sendreply.php\ file and the uploaded file was received using the $- FILES\ variable.

Reference

https://github.com/TERRENCE-REX/CVE/issues/1 https://gist.github.com/TERRENCE-REX/bfca92171143e28899bb8511f311f9ed