PT-2024-28376 · Phpvibe · Phpvibe

Name of the Vulnerable Software and Affected Versions: PHPVibe version 11.0.46 Description: The issue is related to directory travel in PHPVibe, caused by incomplete blacklist checksums and directory checks. This can lead to code execution via writing specific statements to .htaccess and code to ...

PT-2024-37373 · Phpvibe · Phpvibe

Name of the Vulnerable Software and Affected Versions: PHPVibe version 11.0.46 Description: A critical issue was found in the Media Upload Page component, specifically in the /app/uploading/upload-mp3.php file. The manipulation of the file argument leads to unrestricted upload. This issue can be...

PHPVibe Cross-Site Scripting Vulnerability

PHPVibe is a free video management system from PHPVibe Inc. A cross-site scripting vulnerability exists in PHPVibe version 11.0.46, which stems from the fact that manipulation of the parameter site-logo-text can lead to cross-site scripting attacks...

PHPVibe Code Issue Vulnerability

PHPVibe is a free video management system from PHPVibe, Inc. A code issue vulnerability exists in PHPVibe version 11.0.46, which stems from a manipulation of parameter files that can lead to unrestricted file uploads...

PT-2024-37372 · Phpvibe · Phpvibe

Name of the Vulnerable Software and Affected Versions: PHPVibe version 11.0.46 Description: A problematic issue has been found in the Global Options Page component, specifically in the file functionalities.global.php. The manipulation of the site-logo-text argument leads to cross-site scripting...