Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-1940

Malware in sbrugna...

8.8CVSS8.8AI score0.01338EPSS
Exploits1References2
CNVD
CNVD
added 2018/06/27 12:0 a.m.4 views

Trovebox SQL Injection Vulnerability

Trovebox is an open source image sharing and management platform. album is one of the album components. A SQL injection vulnerability exists in the album component in Trovebox versions prior to 4.0.0-rc6. A remote attacker can exploit this vulnerability by sending an HTTP request to view, add,...

8.8CVSS9AI score0.01032EPSS
Exploits1References1
Prion
Prion
added 2018/06/26 4:29 p.m.12 views

Authentication flaw

Trovebox version = 4.0.0-rc6 contains a PHP Type juggling vulnerability in album view component that can result in Authentication bypass. This attack appear to be exploitable via HTTP Request. This vulnerability appears to have been fixed in after commit 742b8edbe...

6.5CVSS8.7AI score0.01338EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2018/06/26 4:29 p.m.24 views

Sql injection

Trovebox version = 4.0.0-rc6 contains a SQL Injection vulnerability in album component that can result in SQL code injection. This attack appear to be exploitable via HTTP request. This vulnerability appears to have been fixed in after commit 742b8ed...

6.5CVSS9.2AI score0.01032EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2018/06/26 4:29 p.m.17 views

Design/Logic Flaw

Trovebox version = 4.0.0-rc6 contains a Unsafe password reset token generation vulnerability in user component that can result in Password reset. This attack appear to be exploitable via HTTP request. This vulnerability appears to have been fixed in after commit 742b8ed...

5CVSS9.4AI score0.01206EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder