Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Cvelist
Cvelistadded 2026/03/12 3:36 p.m.26 views

CVE-2019-25516 Jettweb PHP Hazir Haber Sitesi Scripti V1 SQL Injection via gallery.php

Jettweb PHP Hazir Haber Sitesi Scripti V1 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the galleryid parameter. Attackers can send GET requests to gallery.php with malicious galleryid values using...

8.8CVSS0.00439EPSS
Exploits1References2
Prion
Prionadded 2023/07/07 2:15 p.m.21 views

Cross site scripting

A vulnerability classified as problematic was found in SimplePHPscripts Photo Gallery PHP 2.0. This vulnerability affects unknown code of the file /preview.php of the component URL Parameter Handler. The manipulation leads to cross site scripting. The attack can be initiated remotely. VDB-233290 ...

4CVSS5.5AI score0.00309EPSS
Exploits0References2Affected Software1
exploitpack
exploitpackadded 2008/09/27 12:0 a.m.16 views

MyCard 1.0.2 - id SQL Injection

MyCard 1.0.2 - id SQL Injection . . | / | | \ \ | / / |\ \ \ |/ // / /\ \ / |/ \ / // | / | | / \ /|\ / / / / \ / \ / / / \ | | /\ /\ / \ | \ // est.2007 / / forum.darkc0de.com --d3hydr8 -rsauron-baltazar -sinner01 -C1c4Tr1Z - beenu -Marezzi-P47tr1ck- FeDeReR -MAGE -JeTFyrE-...

0.6AI score
Exploits0
Packet Storm
Packet Stormadded 2008/09/11 12:0 a.m.31 views

ezphotogallery21-sqlxssbypass.txt

!/usr/bin/perl ---------------------------------------------------------------- Script : Ezphotogallery 2.1 Type : Multiple Vulnerabilities Xss/Login Bypass/Sql injection Exploit/File Disclosure Method : GET Alert : High Google Dork : "100% | 50% | 25%" "Back to gallery" inurl:"show.php?imageid="...

7.4AI score
Exploits0
Prion
Prionadded 2007/12/13 7:46 p.m.10 views

Directory traversal

Multiple directory traversal vulnerabilities in MMS Gallery PHP 1.0 allow remote attackers to read arbitrary files via a .. dot dot in the id parameter to 1 getimage.php or 2 getfile.php in mmstemplate/...

5CVSS7.5AI score0.0883EPSS
Exploits0References6Affected Software1
Cvelist
Cvelistadded 2007/12/13 7:0 p.m.19 views

CVE-2007-6323

Multiple directory traversal vulnerabilities in MMS Gallery PHP 1.0 allow remote attackers to read arbitrary files via a .. dot dot in the id parameter to 1 getimage.php or 2 getfile.php in mmstemplate/...

7AI score0.0883EPSS
Exploits0References6
CVE
CVEadded 2007/12/13 7:0 p.m.67 views

CVE-2007-6323

The CVE-2007-6323 entry describes multiple directory traversal vulnerabilities in MMS Gallery PHP 1.0, allowing remote attackers to read arbitrary files via a .. sequence in the id parameter to get_image.php or get_file.php within the mms_template directory. Affected software is MMS Gallery PHP 1...

5CVSS7AI score0.0883EPSS
Exploits0References6Affected Software1
CVE
CVEadded 2002/06/25 4:0 a.m.51 views

CVE-2001-1234

CVE-2001-1234 affects Bharat Mediratta’s Gallery PHP script (versions before 1.2.1). A remote file inclusion flaw in the includedir parameter allows an attacker to include arbitrary remote files, enabling remote code execution with the web server’s privileges. The issue is documented by a Nessus ...

7.5CVSS7.8AI score0.03504EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder