← Back

Adportal

adportal

Vendor: Ipublishmedia • 3 CVEs

CVEs (3)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-50660
1Ipublishmedia
1Adportal
Jun 17, 2026
Jan 7, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
File Upload Bypass was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the file upload functionality
CVE-2024-50659
1Ipublishmedia
1Adportal
Jun 17, 2026
Jan 7, 2025
N/A· v4
6.1 MEDIUM· v3
N/A· v2
Cross Site Scripting vulnerability iPublish Media Solutions AdPortal 3.0.39 allows a remote attacker to escalate privileges via the shippingAsBilling parameter in updateuserinfo.html.
CVE-2024-50658
1Ipublishmedia
1Adportal
Jun 17, 2026
Jan 7, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Server-Side Template Injection (SSTI) was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the shippingAsBilling and firstname parameters in updateuserinfo.html file