Lucene search
K

24 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-1709

Malware in sbrugna...

7.5CVSS6.4AI score0.02441EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-4949

Malware in sbrugna...

7.5CVSS6.4AI score0.06431EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-5656

Malware in sbrugna...

7.5CVSS6.4AI score0.0123EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-3202

Malware in sbrugna...

7.5CVSS6.4AI score0.00951EPSS
Exploits0References4
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

Scripteen Free Image Hosting Script 2.3 - SQL Injection Exploit

No description provided by source...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2010/08/25 7:0 p.m.26 views

CVE-2009-4987

admin/header.php in Scripteen Free Image Hosting Script 2.3 allows remote attackers to bypass authentication and gain administrative access by setting the cookgid cookie value to 1, a different vector than CVE-2008-3211...

7AI score0.06431EPSS
Exploits1References5
Prion
Prion
added 2009/08/20 5:30 p.m.14 views

Sql injection

Multiple SQL injection vulnerabilities in header.php in Scripteen Free Image Hosting Script 2.3 allow remote attackers to execute arbitrary SQL commands via a 1 cookid or 2 cookgid cookie...

7.5CVSS9.1AI score0.01083EPSS
Exploits1References5Affected Software1
OpenVAS
OpenVAS
added 2009/07/26 12:0 a.m.12 views

Scripteen Free Image Hosting Script Multiple Vulnerabilities

Scripteen Free Image Hosting Script is prone to multiple SQL-injection vulnerabilities and to an authentication-bypass vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.5CVSS6.9AI score0.01083EPSS
Exploits1References3
Exploit DB
Exploit DB
added 2009/07/24 12:0 a.m.44 views

Scripteen Free Image Hosting Script 2.3 - Insecure Cookie Handling

|| || | || o,7 || . o7 || q||| o\, : / / . /QQQQQQQQQQQQQQQQQQQ\ /QQQ/\QQQ\ /QQQQQ/ \QQQQQQ\ /QQQQ/ QQQQ\ /QQQQ/ \QQQQ\ |QQQQ/ By Qabandi \QQQQ| |QQQQ| |QQQQ| |QQQQ| From Kuwait, PEACE... |QQQQ| |QQQQ| |QQQQ| |QQQQ\ iqaahotmail.fr /QQQQ| \QQQQ\ /QQQQ/ \QQQQ\ /QQ\QQQQ/ \QQQQ\ \QQQQQQQ/ \QQQQQ...

7.4AI score
Exploits0
NVD
NVD
added 2008/07/18 3:13 p.m.29 views

CVE-2008-3212

Multiple SQL injection vulnerabilities in Scripteen Free Image Hosting Script 1.2.1 allow remote attackers to execute arbitrary SQL commands via the 1 username or 2 password parameter to admin/login.php, or the 3 uname or 4 pass parameter to login.php. NOTE: the provenance of this information is...

7.5CVSS8.4AI score0.00951EPSS
Exploits0References3
Prion
Prion
added 2008/07/18 3:13 p.m.17 views

Sql injection

Multiple SQL injection vulnerabilities in Scripteen Free Image Hosting Script 1.2.1 allow remote attackers to execute arbitrary SQL commands via the 1 username or 2 password parameter to admin/login.php, or the 3 uname or 4 pass parameter to login.php. NOTE: the provenance of this information is...

7.5CVSS9.1AI score0.00951EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2008/07/18 3:0 p.m.29 views

CVE-2008-3212

Multiple SQL injection vulnerabilities in Scripteen Free Image Hosting Script 1.2.1 allow remote attackers to execute arbitrary SQL commands via the 1 username or 2 password parameter to admin/login.php, or the 3 uname or 4 pass parameter to login.php. NOTE: the provenance of this information is...

8.4AI score0.00951EPSS
Exploits0References3
CVE
CVE
added 2008/07/18 3:0 p.m.45 views

CVE-2008-3212

The CVE-2008-3212 entry concerns the Scripteen Free Image Hosting Script 1.2.1. It describes multiple SQL injection vulnerabilities allowing remote attackers to execute arbitrary SQL commands via the following parameters: (1) username or (2) password to admin/login.php, and (3) uname or (4) pass ...

7.5CVSS8.4AI score0.00951EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2007/03/27 9:19 p.m.14 views

CVE-2007-1715

PHP remote file inclusion vulnerability in frontpage.php in Free Image Hosting 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the ADBODYTEMP parameter. NOTE: the forgotpass.php vector is already covered by CVE-2006-5670, and the login.php vector overlaps...

7.5CVSS7.3AI score0.02441EPSS
Exploits0References3
CVE
CVE
added 2007/03/27 9:0 p.m.44 views

CVE-2007-1715

The CVE-2007-1715 issue affects Free Image Hosting 2.0 and earlier, with a vulnerability in frontpage.php that allows PHP code execution via a URL in the AD_BODY_TEMP parameter (remote file inclusion). The vulnerability arises from including remote files through user-controlled input, enabling ar...

7.5CVSS7.5AI score0.02441EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2007/03/27 9:0 p.m.23 views

CVE-2007-1715

PHP remote file inclusion vulnerability in frontpage.php in Free Image Hosting 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the ADBODYTEMP parameter. NOTE: the forgotpass.php vector is already covered by CVE-2006-5670, and the login.php vector overlaps...

7.3AI score0.02441EPSS
Exploits0References3
seebug.org
seebug.org
added 2007/03/26 12:0 a.m.18 views

Free Image Hosting <= 2.0 (AD_BODY_TEMP) Remote File Inclusion Vulns

No description provided by source. Baslik :ImageUpload Script Remote File Inclusion Exploit Free Image Hosting 2.0 .ndir : http://free-php-scripts.net/scripts/ImageUpload.zip Bulan :CrackersChild Zay.flk : Exploit : www.site.com/imageuploadpath/login.php?ADBODYTEMP=Shell? :...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2007/03/25 12:0 a.m.741 views

Image_Upload Script Remote File Inclusion Exploit Free Image Hosting 2.0

Baslik :ImageUpload Script Remote File Inclusion Exploit Free Image Hosting 2.0 .ndir : http://free-php-scripts.net/scripts/ImageUpload.zip Bulan :CrackersChild Zay.flk : tddiv align="center"?php include$ADBODYTEMP;?/div/td Exploit : www.site.com/imageuploadpath/login.php?ADBODYTEMP=Shell? :...

0.2AI score
Exploits0
NVD
NVD
added 2006/11/03 1:7 a.m.15 views

CVE-2006-5670

PHP remote file inclusion vulnerability in forgotpass.php in Free Image Hosting 1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the ADBODYTEMP parameter...

7.5CVSS7.5AI score0.03155EPSS
Exploits1References6
Cvelist
Cvelist
added 2006/11/03 1:0 a.m.23 views

CVE-2006-5671

PHP remote file inclusion vulnerability in contact.php in Free Image Hosting 1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the ADBODYTEMP parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party informati...

7.4AI score0.0123EPSS
Exploits0References1
Rows per page
Query Builder