CVE-2019-25709

CF Image Hosting Script 1.6.5 allows unauthenticated attackers to download and decode the application database by accessing the imgdb.db file in the upload/data directory. Attackers can extract delete IDs stored in plaintext from the deserialized database and use them to delete all pictures via t...

CVE-2019-25709 CF Image Hosting Script 1.6.5 Unauthorized Database Access

CF Image Hosting Script 1.6.5 allows unauthenticated attackers to download and decode the application database by accessing the imgdb.db file in the upload/data directory. Attackers can extract delete IDs stored in plaintext from the deserialized database and use them to delete all pictures via t...

CVE-2019-25709

CF Image Hosting Script 1.6.5 is vulnerable to unauthenticated access that lets an attacker download and decode the application database (imgdb.db in upload/data). The deserialized database stores delete IDs in plaintext, enabling an attacker to delete all pictures by manipulating the d parameter...

PT-2026-32171

CF Image Hosting Script 1.6.5 allows unauthenticated attackers to download and decode the application database by accessing the imgdb.db file in the upload/data directory. Attackers can extract delete IDs stored in plaintext from the deserialized database and use them to delete all pictures via t...

CF Image Hosting Script 安全漏洞

CF Image Hosting Script is a lightweight image hosting script developed by David Tavarez. Version 1.6.5 of the CF Image Hosting Script contains a security vulnerability. This vulnerability stems from improper access control, which may lead to unauthorized database leaks and file deletion...

EUVD-2009-4221

Malware in sbrugna...

EUVD-2011-4498

Malware in sbrugna...

EUVD-2012-0998

Malware in sbrugna...

EUVD-2007-6359

Malware in sbrugna...

EUVD-2009-4949

Malware in sbrugna...

CF Image Hosting Script 1.6.5 Privilege Escalation

!/usr/bin/env python """ Exploit Title: CF Image Hosting Script 1.6.5: Delete database Google Dork: "Powered By CF Image Hosting script" Date: 01/08/2019 Exploit Author: David Tavarez Vendor Homepage: https://davidtavarez.github.io/ Software Link:...

Reservo Image Hosting Script < 1.6.1 XSS Vulnerability

Reservo Image Hosting Script is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if descripti...

CF Image Hosting Script 1.3.8 - Remote File Inclusion

No description provided by source. ================================= CF Image Hosting Script ===remote file inclode ================================= CF Image Hosting Script ===remote file inclode Date: 2010-08-29 Author : FoX HaCkEr Contact : [email protected] SiTe : www.sec4ever.com Download:...

Image Hosting Script Remote shell upload Vulnerability

No description provided by source. ? ?????????????????????????In The Name Of Allah The Mercifull?????????????????????? ? Tybe: Suffering From Remote shell upload Vulnerability ? Vendor: www.x10media.com ? ? Software : Image Hosting Script ? - ? - author: R3d-D3v!L ? TEAM: ArAB!AN !NFORMAT!ON...

Free Image Hosting Script Arbitrary File Upload Vulnerability

No description provided by source. ============================================ Free Image Hosting Script Remote File Upload Vulnerability ============================================ Exploit Title: Free Image Hosting Script ALL VERSIONS Remote File Upload Vulnerability Date: 26/12/11 Author:...

CF Image Hosting Script 1.1 'upload.php' Arbitrary File Upload Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/39870/info CF Image Hosting Script is prone to an arbitrary-file-upload vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to upload arbitrary code and run ...

YABSoft Advanced Image Hosting Script 2.x 'search.php' Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/37233/info YABSoft Advanced Image Hosting Script is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...

Chevereto Upload Script Cross Site Scripting / User Enumeration

Exploit for php platform in category web applications ======================================================================================== Vulnerable Software: Chevereto upload script Downloaded from: http://code.google.com/p/chevereto/downloads/list...

Cross site scripting

Cross-site scripting XSS vulnerability in misc.php in Image Hosting Script DPI 1.0, 1.3, and earlier allows remote attackers to inject arbitrary web script or HTML via the showseries parameter...

CVE-2012-0975

Cross-site scripting XSS vulnerability in misc.php in Image Hosting Script DPI 1.0, 1.3, and earlier allows remote attackers to inject arbitrary web script or HTML via the showseries parameter...