17 matches found
CVE-2020-28687
The edit profile functionality in ARTWORKS GALLERY IN PHP, CSS, JAVASCRIPT, AND MYSQL 1.0 allows remote attackers to upload arbitrary files...
Artworks Gallery Management System 1.0 - 'id' SQL Injection
Exploit Title: Artworks Gallery Management System 1.0 - 'id' SQL Injection Exploit Author: Vijay Sachdeva Date: 2020-12-22 Vendor Homepage: https://www.sourcecodester.com/php/14634/artworks-gallery-management-system-php-full-source-code.html Software Link:...
Artworks Gallery Management System 1.0 SQL Injection
Exploit Title: Artworks Gallery Management System 1.0 - 'id' SQL Injection Exploit Author: Vijay Sachdeva Date: 2020-12-22 Vendor Homepage: https://www.sourcecodester.com/php/14634/artworks-gallery-management-system-php-full-source-code.html Software Link:...
Artworks Gallery 1.0 - Arbitrary File Upload RCE (Authenticated) via Add Artwork
Exploit Title: Artworks Gallery 1.0 - Arbitrary File Upload RCE Authenticated Date: November 17th, 2020 Exploit Author: Shahrukh Iqbal Mirza @shahrukhiqbal24 Vendor Homepage: Source Code & Projects https://code-projects.org Software Link:...
CVE-2020-28687
The edit profile functionality in ARTWORKS GALLERY IN PHP, CSS, JAVASCRIPT, AND MYSQL 1.0 allows remote attackers to upload arbitrary files...
CVE-2020-28688
The add artwork functionality in ARTWORKS GALLERY IN PHP, CSS, JAVASCRIPT, AND MYSQL 1.0 allows remote attackers to upload arbitrary files...
CVE-2020-28688
The add artwork functionality in ARTWORKS GALLERY IN PHP, CSS, JAVASCRIPT, AND MYSQL 1.0 allows remote attackers to upload arbitrary files...
CVE-2020-28687
The edit profile functionality in ARTWORKS GALLERY IN PHP, CSS, JAVASCRIPT, AND MYSQL 1.0 allows remote attackers to upload arbitrary files...
Design/Logic Flaw
The add artwork functionality in ARTWORKS GALLERY IN PHP, CSS, JAVASCRIPT, AND MYSQL 1.0 allows remote attackers to upload arbitrary files...
Design/Logic Flaw
The edit profile functionality in ARTWORKS GALLERY IN PHP, CSS, JAVASCRIPT, AND MYSQL 1.0 allows remote attackers to upload arbitrary files...
CVE-2020-28687
The edit profile functionality in ARTWORKS GALLERY IN PHP, CSS, JAVASCRIPT, AND MYSQL 1.0 allows remote attackers to upload arbitrary files...
CVE-2020-28687
CVE-2020-28687 affects ARTWORKS GALLERY IN PHP, CSS, JAVASCRIPT, AND MYSQL 1.0. The vulnerability arises from the edit profile functionality, which allows remote attackers (authenticated users) to upload arbitrary files, enabling a potential remote code execution via a crafted profile picture (e....
CVE-2020-28688
The add artwork functionality in ARTWORKS GALLERY IN PHP, CSS, JAVASCRIPT, AND MYSQL 1.0 allows remote attackers to upload arbitrary files...
CVE-2020-28688
CVE-2020-28688 affects ARTWORKS GALLERY IN PHP, CSS, JAVASCRIPT, AND MYSQL 1.0. The vulnerability is in the add artwork functionality, which allows remote attackers to upload arbitrary files, potentially enabling remote code execution. The Exploit-DB PoC demonstrates an authenticated workflow to ...
Code Projects Artworks Gallery Code Issues Vulnerabilities
Code Projects Artworks Gallery is an online artwork management website builder organized by Code Projects. A security vulnerability in ARTWORKS GALLERY, which exists within the Edit Configuration File feature in PHP, CSS, JAVASCRIPT, and MYSQL 1.0, can be exploited by remote attackers to upload...
Artworks Gallery 1.0 Shell Upload
Artworks Gallery - Arbitrary File Upload - RCE Authenticated - Edit Profile Exploit Title: Artworks Gallery - Arbitrary File Upload - RCE Authenticated - Edit Profile Date: November 17th, 2020 Exploit Author: Shahrukh Iqbal Mirza @shahrukhiqbal24 Vendor Homepage: Source Code & Projects...
Code Projects Artworks Gallery Code Issues Vulnerabilities
Code Projects Artworks Gallery is an online artwork management builder system organized by Code Projects. A security vulnerability exists in Artworks Gallery version 1.0 that stems from multiple remote shell upload vulnerabilities...