85 matches found
CVE-2019-25709
CF Image Hosting Script 1.6.5 allows unauthenticated attackers to download and decode the application database by accessing the imgdb.db file in the upload/data directory. Attackers can extract delete IDs stored in plaintext from the deserialized database and use them to delete all pictures via t...
CVE-2019-25709 CF Image Hosting Script 1.6.5 Unauthorized Database Access
CF Image Hosting Script 1.6.5 allows unauthenticated attackers to download and decode the application database by accessing the imgdb.db file in the upload/data directory. Attackers can extract delete IDs stored in plaintext from the deserialized database and use them to delete all pictures via t...
CVE-2019-25709
CF Image Hosting Script 1.6.5 is vulnerable to unauthenticated access that lets an attacker download and decode the application database (imgdb.db in upload/data). The deserialized database stores delete IDs in plaintext, enabling an attacker to delete all pictures by manipulating the d parameter...
PT-2026-32171
CF Image Hosting Script 1.6.5 allows unauthenticated attackers to download and decode the application database by accessing the imgdb.db file in the upload/data directory. Attackers can extract delete IDs stored in plaintext from the deserialized database and use them to delete all pictures via t...
CF Image Hosting Script 安全漏洞
CF Image Hosting Script is a lightweight image hosting script developed by David Tavarez. Version 1.6.5 of the CF Image Hosting Script contains a security vulnerability. This vulnerability stems from improper access control, which may lead to unauthorized database leaks and file deletion...
EUVD-2009-4221
Malware in sbrugna...
EUVD-2011-4498
Malware in sbrugna...
EUVD-2009-3622
Malware in sbrugna...
EUVD-2009-4949
Malware in sbrugna...
EUVD-2007-6359
Malware in sbrugna...
EUVD-2012-0998
Malware in sbrugna...
EUVD-2008-2516
Malware in sbrugna...
YetiShare File Hosting Script 5.1.0 - 'url' Server-Side Request Forgery
Title: YetiShare File Hosting Script 5.1.0 - 'url' Server-Side Request Forgery Date: 09.01.2021 Author: Numan Türle Vendor Homepage: https://mfscripts.com Software Link: https://yetishare.com Version: v5.1.0 Tested on: YetiShare - File Hosting Script v5.1.0, Php Version : 7.4 Summary ---------...
MFScripts YetiShare Cross-Site Scripting Vulnerability
Mellow Fish YetiShare is a PHP-based file hosting web system script from Mellow Fish UK. A cross-site scripting vulnerability exists in the getallfileserverpaths.ajax.php file in Mellow Fish YetiShare versions 3.5.2 through 4.5.3. The vulnerability stems from a lack of proper validation of...
CF Image Hosting Script 1.6.5 Privilege Escalation
!/usr/bin/env python """ Exploit Title: CF Image Hosting Script 1.6.5: Delete database Google Dork: "Powered By CF Image Hosting script" Date: 01/08/2019 Exploit Author: David Tavarez Vendor Homepage: https://davidtavarez.github.io/ Software Link:...
Reservo Image Hosting Script < 1.6.1 XSS Vulnerability
Reservo Image Hosting Script is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if descripti...
Airbnb Clone Script - Arbitrary File Upload Vulnerability
Exploit for php platform in category web applications Vulnerability:Profile Arbitrary Shell Upload Google Dork: Airbnb Clone Script Date:11.01.2017 Vendor Homepage: http://www.tibsolutions.com/airbnb-clone/ Script Name: Airbnb Clone Script Script Buy Now:...
CF Image Hosting Script 1.3.8 - Remote File Inclusion
No description provided by source. ================================= CF Image Hosting Script ===remote file inclode ================================= CF Image Hosting Script ===remote file inclode Date: 2010-08-29 Author : FoX HaCkEr Contact : [email protected] SiTe : www.sec4ever.com Download:...
Image Hosting Script Remote shell upload Vulnerability
No description provided by source. ? ?????????????????????????In The Name Of Allah The Mercifull?????????????????????? ? Tybe: Suffering From Remote shell upload Vulnerability ? Vendor: www.x10media.com ? ? Software : Image Hosting Script ? - ? - author: R3d-D3v!L ? TEAM: ArAB!AN !NFORMAT!ON...
SoftBizScripts Hosting Script SQL Injection Vunerability
No description provided by source. Exploit Title: SoftBizScripts Hosting Script SQL Injection Vunerability Date: 29-4-2010 Author: 41.w4r10r Vendor Link : http://softbizscripts.com/ Version: Web Application Tested on: Apcahe/Unix CVE : if exists Dork : inurl:browsecats.php?cid= Code :...