Khoros

khoros

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Lithium Forum

lithium_forum

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2017-20106 1Khoros 1Lithium Forum Nov 21, 2024 Jun 28, 2022 N/A· v4 4.4 MEDIUM· v3 3.6 LOW· v2 A vulnerability, which was classified as critical, has been found in Lithium Forum 2017 Q1. This issue affects some unknown processing of the component Compose Message Handler. The manipulation of the argument upload_url...Show more A vulnerability, which was classified as critical, has been found in Lithium Forum 2017 Q1. This issue affects some unknown processing of the component Compose Message Handler. The manipulation of the argument upload_url leads to server-side request forgery. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2017-20106

1Khoros

1Lithium Forum

Nov 21, 2024

Jun 28, 2022

N/A· v4

4.4 MEDIUM· v3

3.6 LOW· v2

A vulnerability, which was classified as critical, has been found in Lithium Forum 2017 Q1. This issue affects some unknown processing of the component Compose Message Handler. The manipulation of the argument upload_url leads to server-side request forgery. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.Show less