85 matches found
CVE-2019-25709 CF Image Hosting Script 1.6.5 Unauthorized Database Access
CF Image Hosting Script 1.6.5 allows unauthenticated attackers to download and decode the application database by accessing the imgdb.db file in the upload/data directory. Attackers can extract delete IDs stored in plaintext from the deserialized database and use them to delete all pictures via t...
CVE-2019-25709
CF Image Hosting Script 1.6.5 allows unauthenticated attackers to download and decode the application database by accessing the imgdb.db file in the upload/data directory. Attackers can extract delete IDs stored in plaintext from the deserialized database and use them to delete all pictures via t...
CVE-2019-25709
CF Image Hosting Script 1.6.5 is vulnerable to unauthenticated access that lets an attacker download and decode the application database (imgdb.db in upload/data). The deserialized database stores delete IDs in plaintext, enabling an attacker to delete all pictures by manipulating the d parameter...
CF Image Hosting Script 安全漏洞
CF Image Hosting Script is a lightweight image hosting script developed by David Tavarez. Version 1.6.5 of the CF Image Hosting Script contains a security vulnerability. This vulnerability stems from improper access control, which may lead to unauthorized database leaks and file deletion...
PT-2026-32171
CF Image Hosting Script 1.6.5 allows unauthenticated attackers to download and decode the application database by accessing the imgdb.db file in the upload/data directory. Attackers can extract delete IDs stored in plaintext from the deserialized database and use them to delete all pictures via t...
EUVD-2008-2516
Malware in sbrugna...
EUVD-2009-4949
Malware in sbrugna...
EUVD-2007-6359
Malware in sbrugna...
EUVD-2009-3622
Malware in sbrugna...
EUVD-2011-4498
Malware in sbrugna...
EUVD-2012-0998
Malware in sbrugna...
EUVD-2009-4221
Malware in sbrugna...
YetiShare File Hosting Script 5.1.0 - 'url' Server-Side Request Forgery
Title: YetiShare File Hosting Script 5.1.0 - 'url' Server-Side Request Forgery Date: 09.01.2021 Author: Numan Türle Vendor Homepage: https://mfscripts.com Software Link: https://yetishare.com Version: v5.1.0 Tested on: YetiShare - File Hosting Script v5.1.0, Php Version : 7.4 Summary ---------...
MFScripts YetiShare Cross-Site Scripting Vulnerability
Mellow Fish YetiShare is a PHP-based file hosting web system script from Mellow Fish UK. A cross-site scripting vulnerability exists in the getallfileserverpaths.ajax.php file in Mellow Fish YetiShare versions 3.5.2 through 4.5.3. The vulnerability stems from a lack of proper validation of...
CF Image Hosting Script 1.6.5 Privilege Escalation
!/usr/bin/env python """ Exploit Title: CF Image Hosting Script 1.6.5: Delete database Google Dork: "Powered By CF Image Hosting script" Date: 01/08/2019 Exploit Author: David Tavarez Vendor Homepage: https://davidtavarez.github.io/ Software Link:...
Reservo Image Hosting Script < 1.6.1 XSS Vulnerability
Reservo Image Hosting Script is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if descripti...
Airbnb Clone Script - Arbitrary File Upload Vulnerability
Exploit for php platform in category web applications Vulnerability:Profile Arbitrary Shell Upload Google Dork: Airbnb Clone Script Date:11.01.2017 Vendor Homepage: http://www.tibsolutions.com/airbnb-clone/ Script Name: Airbnb Clone Script Script Buy Now:...
SoftBizScripts Hosting Script SQL Injection Vunerability
No description provided by source. Exploit Title: SoftBizScripts Hosting Script SQL Injection Vunerability Date: 29-4-2010 Author: 41.w4r10r Vendor Link : http://softbizscripts.com/ Version: Web Application Tested on: Apcahe/Unix CVE : if exists Dork : inurl:browsecats.php?cid= Code :...
CF Image Hosting Script 1.3.8 - Remote File Inclusion
No description provided by source. ================================= CF Image Hosting Script ===remote file inclode ================================= CF Image Hosting Script ===remote file inclode Date: 2010-08-29 Author : FoX HaCkEr Contact : [email protected] SiTe : www.sec4ever.com Download:...
YABSoft Advanced Image Hosting Script 2.x 'search.php' Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/37233/info YABSoft Advanced Image Hosting Script is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...