CVE-2025-30996

Unrestricted Upload of File with Dangerous Type vulnerability in Themify Themify Sidepane WordPress Theme, Themify Themify Newsy, Themify Themify Folo, Themify Themify Edmin, Themify Bloggie, Themify Photobox, Themify Wigi, Themify Rezo, Themify Slide allows Upload a Web Shell to a Web Server.Thi...

CVE-2025-30996

Unrestricted Upload of File with Dangerous Type vulnerability in Themify Themify Sidepane WordPress Theme, Themify Themify Newsy, Themify Themify Folo, Themify Themify Edmin, Themify Bloggie, Themify Photobox, Themify Wigi, Themify Rezo, Themify Slide allows Upload a Web Shell to a Web Server.Thi...

CVE-2025-30996 Arbitrary File Upload Vulnerability in WordPress themes by Themify

Unrestricted Upload of File with Dangerous Type vulnerability in Themify Themify Sidepane WordPress Theme, Themify Themify Newsy, Themify Themify Folo, Themify Themify Edmin, Themify Bloggie, Themify Photobox, Themify Wigi, Themify Rezo, Themify Slide allows Upload a Web Shell to a Web Server.Thi...

CVE-2025-30996 WordPress Themify Newsy <= 1.9.9 - Arbitrary File Upload Vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in Themify Themify Newsy newsy allows Upload a Web Shell to a Web Server.This issue affects Themify Newsy: from n/a through = 1.9.9...

PT-2026-1513

Name of the Vulnerable Software and Affected Versions Themify Sidepane WordPress Theme versions n/a through 1.9.8 Themify Newsy versions n/a through 1.9.9 Themify Folo versions n/a through 1.9.6 Themify Edmin versions n/a through 2.0.0 Themify Bloggie versions n/a through 2.0.8 Themify Photobox...

WordPress多款产品 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which provides the ability to host a personal blog site on a PHP and MySQL bas...

WordPress Photobox <= 2.0.1 - Arbitrary File Upload Vulnerability

Arbitrary File Upload Vulnerability discovered by Tran Nguyen Bao KhanhVCI - VNPT in WordPress Theme Photobox versions = 2.0.1...

WordPress Photobox <= 2.0.1 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Tran Nguyen Bao KhanhVCI - VNPT in WordPress Theme Photobox versions = 2.0.1...

WordPress Photobox Theme <= 2.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Photobox Type Theme Vulnerable versions = 2.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2025-31013 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b4a93febf215 Credits Tran Nguyen Bao Khanh VCI - VNPT Cyber...

photobox.co.uk XSS vulnerability

Vulnerable URL: https://www.photobox.co.uk/a/register?previousPage=https%3A%2F%2Fwww.photobox.co.uk%2F Details: Description| Value ---|--- Patched:| Yes, at 16.04.2017 Latest check for patch:| 16.04.2017 11:31 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 3149...

photobox.mua.hrdepartment.com XSS vulnerability

Vulnerable URL: https://photobox.mua.hrdepartment.com/hr/ats/JobSearch/viewAll/"onclick=alert/OPENBUGBOUNTY/CLICK HERE Details: Description| Value ---|--- Patched:| No Latest check for patch:| 13.08.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not...

WordPress Mklasen's Photobox Plugin - Cross Site Scripting

Because of this vulnerability, the attackers can inject arbitrary web script or HTML. Solution Update the plugin...

WordPress Mklasen's Photobox Plugin - Cross Site Scripting

Because of this vulnerability, the attackers can inject arbitrary web script or HTML. Solution Update the plugin...

WordPress Photobox Theme - File Upload Arbitrary Code Execution

A "themify-ajax.php" file upload arbitrary PHP code execution vulnerability was found in WordPress Photobox theme. Solution Update the theme...

WordPress Photobox Theme - File Upload Arbitrary Code Execution

A "themify-ajax.php" file upload arbitrary PHP code execution vulnerability was found in WordPress Photobox theme. Solution Update the theme...

CVE-2009-1567

Multiple stack-based buffer overflows in the Lateral Arts Photobox uploader ActiveX control 1.x before 1.3, and 2.2.0.6, allow remote attackers to execute arbitrary code via a long URL string for the 1 LogURL, 2 ConnectURL, 3 SkinURL, 4 AlbumCreateURL, 5 ErrorURL, or 6 httpsinglehost property val...

CVE-2009-1567

The CVE-2009-1567 issue affects Lateral Arts Photobox Uploader ActiveX Control (2.x and 1.x up to 1.3). It is a stack-based buffer overflow triggered by overly long values assigned to URL-related properties (LogURL, ConnectURL, SkinURL, AlbumCreateURL, ErrorURL, httpsinglehost), allowing remote c...

CVE-2009-1567

Multiple stack-based buffer overflows in the Lateral Arts Photobox uploader ActiveX control 1.x before 1.3, and 2.2.0.6, allow remote attackers to execute arbitrary code via a long URL string for the 1 LogURL, 2 ConnectURL, 3 SkinURL, 4 AlbumCreateURL, 5 ErrorURL, or 6 httpsinglehost property val...

KLA10241 ACE vulnerability in Lateral Arts Photobox Uploader

A buffer overflow was found in LA Photobox Uploader. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed URL. Original advisories Juniper description Related products Photobox-Uploader-ActiveX-Control C...