15 matches found
Dify: When Your AI Platform Becomes the Attack Surface
Executive Summary We identified a couple of vulnerabilities in AI automation platform Dify resulting in cross-tenant sensitive information disclosure and one-click account takeover. These findings reinforce the pattern we documented in our previous n8n blogpost: even though AI automation platform...
EUVD-2009-2546
Malware in sbrugna...
EUVD-2008-6059
Malware in sbrugna...
CVE-2009-2551
Multiple cross-site scripting XSS vulnerabilities in ScriptsEz Easy Image Downloader allow remote attackers to inject arbitrary web script or HTML via the id parameter in a detail action to 1 main.php and possibly 2 demopage.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in ScriptsEz Easy Image Downloader allow remote attackers to inject arbitrary web script or HTML via the id parameter in a detail action to 1 main.php and possibly 2 demopage.php...
CVE-2009-2551
CVE-2009-2551 describes multiple XSS vulnerabilities in ScriptsEz Easy Image Downloader. The issue is triggered via the id parameter in a detail action to main.php (and possibly demo_page.php), allowing remote script/HTML injection. The provided documents do not include product versions, affected...
Easy Image Downloader Cross Site Scripting
-----------------------------I AM MUSLIM !!------------------------------ ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || ||...
Scriptsez Easy Image Downloader - 'id' Cross-Site Scripting
source: https://www.securityfocus.com/bid/35701/info Easy Image Downloader is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...
CVE-2008-6089
Directory traversal vulnerability in main.php in ScriptsEz Easy Image Downloader allows remote attackers to read arbitrary files via a .. dot dot in the id parameter in a download action...
Directory traversal
Directory traversal vulnerability in main.php in ScriptsEz Easy Image Downloader allows remote attackers to read arbitrary files via a .. dot dot in the id parameter in a download action...
CVE-2008-6089
Directory traversal vulnerability in main.php in ScriptsEz Easy Image Downloader allows remote attackers to read arbitrary files via a .. dot dot in the id parameter in a download action...
CVE-2008-6089
CVE-2008-6089 describes a directory traversal in the ScriptsEz Easy Image Downloader, specifically in the download action that uses main.php. The vulnerability allows an attacker to read arbitrary files by supplying ".." in the id parameter, enabling remote access to non‑intended files. The avail...
ScriptsEz Easy Image Downloader Local File Download Vulnerability
Exploit for unknown platform in category web applications ================================================================= ScriptsEz Easy Image Downloader Local File Download Vulnerability ================================================================= ScriptsEz Easy Image Downloader Local Fil...
Scriptsez Easy Image Downloader - Local File Download
Scriptsez Easy Image Downloader - Local File Download ScriptsEz Easy Image Downloader Local File Download Vulnerability url: http://www.scriptsez.net/ Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational...
Scriptsez Easy Image Downloader - Local File Download
ScriptsEz Easy Image Downloader Local File Download Vulnerability url: http://www.scriptsez.net/ Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational purpose. Use it at your own risk. Author will be not...