17 matches found
PT-2026-41885
Name of the Vulnerable Software and Affected Versions Contest Gallery versions prior to 28.1.7 Description The Contest Gallery plugin for WordPress contains a SQL Injection flaw. This occurs because the unauthenticated 'post cg gallery form upload' AJAX action fails to properly escape the form...
CVE-2026-33647 AVideo Vulnerable to Remote Code Execution via MIME/Extension Mismatch in ImageGallery File Upload
WWBN AVideo is an open source video platform. In versions up to and including 26.0, the ImageGallery::saveFile method validates uploaded file content using finfo MIME type detection but derives the saved filename extension from the user-supplied original filename without an allowlist check. An...
CVE-2026-33647 AVideo Vulnerable to Remote Code Execution via MIME/Extension Mismatch in ImageGallery File Upload
WWBN AVideo is an open source video platform. In versions up to and including 26.0, the ImageGallery::saveFile method validates uploaded file content using finfo MIME type detection but derives the saved filename extension from the user-supplied original filename without an allowlist check. An...
CVE-2025-70457
A Remote Code Execution RCE vulnerability exists in Sourcecodester Modern Image Gallery App v1.0 within the gallery/upload.php component. The application fails to properly validate uploaded file contents. Additionally, the application preserves the user-supplied file extension during the save...
SourceCodester Modern Image Gallery App security vulnerabilities
SourceCodester Modern Image Gallery App is an open-source modern image gallery application developed by SourceCodester. Version 1.0 of the SourceCodester Modern Image Gallery App contains a security vulnerability. This vulnerability arises from the gallery/upload.php component not properly...
CVE-2025-70457
A Remote Code Execution RCE vulnerability exists in Sourcecodester Modern Image Gallery App v1.0 within the gallery/upload.php component. The application fails to properly validate uploaded file contents. Additionally, the application preserves the user-supplied file extension during the save...
📄 Institute Admission Software 2.5 Shell Upload
Institute Admission Software version 2.5 fails to properly validate and restrict uploaded files in the gallery upload functionality within the admin panel. =============================================================================================================================================...
EUVD-2021-22669
Malware in sbrugna...
Code-Projects Online Hotel Reservation System 代码问题漏洞
Online Hotel Reservation System is an online hotel reservation system. Online Hotel Reservation System suffers from an arbitrary file upload vulnerability that stems from the lack of valid validation of uploaded files by the parameter image in the file /admin/addgalleryexec.php. No details of the...
GHSA-WQR6-WV6C-P8FX Magento improper access control vulnerability within Magento's Media Gallery Upload workflow
Magento versions 2.4.2 and earlier, 2.4.2-p1 and earlier and 2.3.7 and earlier are affected by an improper access control vulnerability within Magento's Media Gallery Upload workflow. By storing a specially crafted file in the website gallery, an authenticated attacker with administrative privile...
PT-2022-25630 · Unknown · Zoo Management System
Name of the Vulnerable Software and Affected Versions: Zoo Management System version 1.0 Description: The issue is related to an arbitrary file upload vulnerability. This vulnerability is located in the picture upload point of the gallery file of the Gallery module in the background management...
PT-2021-6353 · Adobe · Magento
Name of the Vulnerable Software and Affected Versions: Magento versions 2.4.2 and earlier Magento versions 2.4.2-p1 and earlier Magento versions 2.3.7 and earlier Description: The issue is related to improper access control within Magento's Media Gallery Upload workflow. An authenticated attacker...
CVE-2020-28071
SourceCodester Alumni Management System 1.0 is affected by cross-site Scripting XSS in /admin/gallery.php. After the admin authentication an attacker can upload an image in the gallery using a XSS payload in the description textarea called 'about' and reach a stored XSS...
SiteGenius CMS Blind SQL Injection
Exploit Title: SiteGenius CMS Blind SQL Injection Vulnerabilities Date found: 7.2010 Author: MikiSoft Email: [email protected] CMS Software Site/Link: http://www.webtopsolutions.net, http://www.hostingcms.ch/home/index.php?p=143 CMS Info.: SiteGenius 2002 is framework for business excellence...
jupiterCMS-sql.txt
Hello,, Jupiter CMS Sql injections ,full path and xss vulnerabilities Discovered By : HACKERS PAL Copy rights : HACKERS PAL Website : http://www.soqor.net Email Address : [email protected] if magicquotesgpc = off login with user name : ' or id=1/ or ' or authorization = 4/ you will be loged in...
Jupiter CMS 1.1.4/1.1.5 - 'galleryuploadfunction.php' Arbitrary File Upload
source: https://www.securityfocus.com/bid/20048/info Jupiter CMSA is prone to multiple input-validation vulnerabilities, including cross-site scripting, SQL-injection, and arbitrary file-upload issues, because the application fails to sanitize user-supplied input. A successful exploit of these...
# MHG Security Team --- Gallery Upload Vulnerabilities
Milli-Harekat Advisory www.milli-harekat.org Gallery Upload Vulnerabilities Risk : High Class: Remote Script : Gallery Scripts Credits : Dj ReMix Thanks : Яy Korsan , Liz0zim ,ESOBAR, PoizinBo0x ,TRIP ,ERNE ,CyberWolf... Vulnerable Scripts : DUGallery v1.x Dugallery v2.x DuPortal v2.x DuBanner Al...