2 matches found
CVE-2018-5705
Reservo Image Hosting 1.6 is vulnerable to cross-site scripting in the search engine (t parameter of /search). The vulnerability allows code execution via a malicious URL and can lead to session theft of users and admins due to an active login interface. PoC/exploit details are available in publi...
Reservo Image Hosting Script 1.5 - Cross-Site Scripting
Reservo Image Hosting Script 1.5 - Cross-Site Scripting Exploit Title: Reservo Image Hosting Script 1.5 - Cross Site Scripting Date: 15-01-2018 Exploit Author: Dennis Veninga Contact Author: d.veninga at networking4all.com Vendor Homepage: reservo.co Version: 1.6 CVE-ID: CVE-2018-5705 With suppor...