Lucene search
K

16 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2008-4606

Malware in sbrugna...

6.8CVSS6.4AI score0.05001EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-5964

Malware in sbrugna...

6.8CVSS6.4AI score0.01225EPSS
Exploits0References4
Openbugbounty
Openbugbounty
added 2017/04/06 10:23 p.m.7 views

fritz-berger.de XSS vulnerability

Vulnerable URL: https://www.fritz-berger.de/suche?q=%22%3Eblub%3Csvg%2Fonload%3Dalert%28%2FOPENBUGBOUNTY%2F%29%3E%27 Details: Description| Value ---|--- Patched:| Yes, at 21.06.2017 Latest check for patch:| 21.06.2017 10:26 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...

6.3AI score
Exploits0
hackapp
hackapp
added 2016/04/01 9:24 a.m.14 views

Fritz Berger - Certificates or keys found, Suspicious files vulnerabilities

HackApp vulnerability scanner discovered that application Fritz Berger published at the 'play' market has multiple vulnerabilities...

0.2AI score
Exploits0References1Affected Software1
NVD
NVD
added 2009/03/24 2:30 p.m.23 views

CVE-2008-6515

Cross-site scripting XSS vulnerability in Fritz Berger yet another php photo album - next generation yappa-ng allows remote attackers to inject arbitrary web script or HTML via the query string to the default URI...

4.3CVSS5.7AI score0.01458EPSS
Exploits1References3
Prion
Prion
added 2009/03/24 2:30 p.m.17 views

Cross site scripting

Cross-site scripting XSS vulnerability in Fritz Berger yet another php photo album - next generation yappa-ng allows remote attackers to inject arbitrary web script or HTML via the query string to the default URI...

4.3CVSS6.2AI score0.01458EPSS
Exploits1References3
Cvelist
Cvelist
added 2009/03/24 2:0 p.m.22 views

CVE-2008-6515

Cross-site scripting XSS vulnerability in Fritz Berger yet another php photo album - next generation yappa-ng allows remote attackers to inject arbitrary web script or HTML via the query string to the default URI...

5.7AI score0.01458EPSS
Exploits1References3
Cvelist
Cvelist
added 2009/03/20 12:0 a.m.16 views

CVE-2008-6495

Cross-site scripting XSS vulnerability in index.php in Fritz Berger yet another php photo album - next generation yappa-ng 2.3.2 allows remote attackers to inject arbitrary web script or HTML via the album parameter...

5.7AI score0.03722EPSS
Exploits1References5
NVD
NVD
added 2008/10/21 1:18 a.m.13 views

CVE-2008-4626

Directory traversal vulnerability in index.php in Fritz Berger yet another php photo album - next generation yappa-ng 2.3.2 and possibly other versions through 2.3.3-beta0, when magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in th...

6.8CVSS7.2AI score0.05001EPSS
Exploits1References6
Cvelist
Cvelist
added 2008/10/21 12:0 a.m.20 views

CVE-2008-4626

Directory traversal vulnerability in index.php in Fritz Berger yet another php photo album - next generation yappa-ng 2.3.2 and possibly other versions through 2.3.3-beta0, when magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in th...

7.2AI score0.05001EPSS
Exploits1References6
CVE
CVE
added 2008/10/21 12:0 a.m.47 views

CVE-2008-4626

The CVE-2008-4626 issue affects yappa-ng (Fritz Berger yet another php photo album) paired with PHP. A Local File Inclusion vulnerability exists in index.php: when magic_quotes_gpc is disabled, the album parameter can cause the script to include and potentially execute local files. Affected versi...

6.8CVSS7.2AI score0.05001EPSS
Exploits1References6Affected Software1
Prion
Prion
added 2007/11/15 10:46 p.m.14 views

Remote file inclusion

PHP remote file inclusion vulnerability in checknoimage.php in Fritz Berger yet another php photo album - next generation yappa-ng 2.3.2 allows remote attackers to execute arbitrary PHP code via a URL in the configpathsrcinclude parameter...

6.8CVSS8AI score0.01225EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2007/11/15 10:46 p.m.17 views

CVE-2007-5994

PHP remote file inclusion vulnerability in checknoimage.php in Fritz Berger yet another php photo album - next generation yappa-ng 2.3.2 allows remote attackers to execute arbitrary PHP code via a URL in the configpathsrcinclude parameter...

6.8CVSS7.5AI score0.01225EPSS
Exploits0References3
CVE
CVE
added 2007/11/15 10:0 p.m.51 views

CVE-2007-5994

CVE-2007-5994 describes a PHP remote file inclusion in Fritz Berger’s yet another php photo album - next generation (yappa-ng) 2.3.2. The flaw occurs in check_noimage.php when an attacker supplies a URL in the config[path_src_include] parameter, allowing arbitrary PHP code execution on the affect...

6.8CVSS7.5AI score0.01225EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2007/11/15 10:0 p.m.20 views

CVE-2007-5994

PHP remote file inclusion vulnerability in checknoimage.php in Fritz Berger yet another php photo album - next generation yappa-ng 2.3.2 allows remote attackers to execute arbitrary PHP code via a URL in the configpathsrcinclude parameter...

7.5AI score0.01225EPSS
Exploits0References3
securityvulns
securityvulns
added 2005/05/12 12:0 a.m.191 views

Yappa-NG Multiple Vulnerabilities

GulfTech Security Research May 11th, 2005 Vendor : Fritz Berger URL : http://sourceforge.net/projects/yappa-ng/ Version : yappa-ng 2.3.1 && Earlier Risk : Multiple Vulnerabilities Description: Yappa-NG is the second generation new and improved version of Yappa yet another php photo album. There a...

7AI score
Exploits0
Rows per page
Query Builder