CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

OSV•added 2024/08/29 8:15 p.m.•0 views

CVE-2024-41350

bjyadmin commit a560fd5 is vulnerable to Cross Site Scripting XSS via Public/statics/umeditor123/php/imageUp.php...

6.1CVSS5.8AI score

Exploits0References2

OSV•added 2024/07/31 11:15 p.m.•0 views

CVE-2024-7329

A vulnerability, which was classified as critical, was found in YouDianCMS 7. Affected is an unknown function of the file /Public/ckeditor/plugins/multiimage/dialogs/imageupload.php. The manipulation of the argument files leads to unrestricted upload. It is possible to launch the attack remotely...

9.8CVSS6.1AI score

Exploits0References4

CNNVD•added 2024/07/31 12:0 a.m.•2 views

YouDianCMS 代码问题漏洞

YouDianCMS YouDian CMS is a website builder from China YouDian Company. A code issue vulnerability exists in YouDianCMS version 7, which originates from the parameter files in the file /Public/ckeditor/plugins/multiimage/dialogs/imageupload.php that can lead to unrestricted uploads...

9.8CVSS6.6AI score0.00141EPSS

Exploits1References5

OSV•added 2024/01/10 4:15 p.m.•0 views

CVE-2023-49862

An information disclosure vulnerability exists in the aVideoEncoderReceiveImage.json.php image upload functionality of WWBN AVideo dev master commit 15fed957fb. A specially crafted HTTP request can lead to arbitrary file read.This vulnerability is triggered by the downloadURLgifimage parameter...

6.5CVSS5.9AI score

Exploits0References2

seebug.org•added 2014/07/01 12:0 a.m.•11 views

Image_Upload Script 2.0 - Multiple Remote File Include Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/23132/info ImageUpload Script is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the...

7.1AI score

Exploits0

Exploit DB•added 2012/05/10 12:0 a.m.•26 views

Chevereto 1.91 - '/Upload/engine.php?v' Cross-Site Scripting

source: https://www.securityfocus.com/bid/53448/info Chevereto Image Upload Script is prone to a cross-site scripting vulnerability and an information-disclosure vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker m...

7.4AI score

Exploits0

seebug.org•added 2007/03/26 12:0 a.m.•15 views

Free Image Hosting <= 2.0 (AD_BODY_TEMP) Remote File Inclusion Vulns

No description provided by source. Baslik :ImageUpload Script Remote File Inclusion Exploit Free Image Hosting 2.0 .ndir : http://free-php-scripts.net/scripts/ImageUpload.zip Bulan :CrackersChild Zay.flk : Exploit : www.site.com/imageuploadpath/login.php?ADBODYTEMP=Shell? :...

7.1AI score

Exploits0

securityvulns•added 2007/03/25 12:0 a.m.•734 views

Image_Upload Script Remote File Inclusion Exploit Free Image Hosting 2.0

Baslik :ImageUpload Script Remote File Inclusion Exploit Free Image Hosting 2.0 .ndir : http://free-php-scripts.net/scripts/ImageUpload.zip Bulan :CrackersChild Zay.flk : tddiv align="center"?php include$ADBODYTEMP;?/div/td Exploit : www.site.com/imageuploadpath/login.php?ADBODYTEMP=Shell? :...

0.2AI score

Exploits0

exploitpack•added 2007/03/25 12:0 a.m.•17 views

Free Image Hosting 2.0 - AD_BODY_TEMP Remote File Inclusion

Free Image Hosting 2.0 - ADBODYTEMP Remote File Inclusion Baslik :ImageUpload Script Remote File Inclusion Exploit Free Image Hosting 2.0 .ndir : http://free-php-scripts.net/scripts/ImageUpload.zip Bulan :CrackersChild Zay.flk : Exploit : www.site.com/imageuploadpath/login.php?ADBODYTEMP=Shell? :...

Exploits0

Exploit DB•added 2007/03/25 12:0 a.m.•25 views

Free Image Hosting 2.0 - 'AD_BODY_TEMP' Remote File Inclusion

Baslik :ImageUpload Script Remote File Inclusion Exploit Free Image Hosting 2.0 .ndir : http://free-php-scripts.net/scripts/ImageUpload.zip Bulan :CrackersChild Zay.flk : Exploit : www.site.com/imageuploadpath/login.php?ADBODYTEMP=Shell? :...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by