11 matches found
CVE-2021-47921 Free Photo & Video Vault 0.0.2 Directory Traversal Vulnerability via Web Request
Free Photo & Video Vault 0.0.2 contains a directory traversal web vulnerability that allows remote attackers to manipulate application path requests and access sensitive system files. Attackers can exploit the vulnerability without privileges to retrieve environment variables and access...
CVE-2021-47921 Free Photo & Video Vault 0.0.2 Directory Traversal Vulnerability via Web Request
Free Photo & Video Vault 0.0.2 contains a directory traversal web vulnerability that allows remote attackers to manipulate application path requests and access sensitive system files. Attackers can exploit the vulnerability without privileges to retrieve environment variables and access...
CVE-2021-47921
Free Photo & Video Vault 0.0.2 contains a directory traversal web vulnerability that allows remote attackers to manipulate application path requests and access sensitive system files. Attackers can exploit the vulnerability without privileges to retrieve environment variables and access...
CVE-2021-47921
CVE-2021-47921 affects Free Photo & Video Vault 0.0.2. A directory traversal vulnerability exposed via web requests allows remote attackers to manipulate application path requests and access sensitive system files, including environment variables. The vulnerability is described consistently acros...
Free Photo & Video Vault v0.0.2 - Directory Traversal
Document Title: =============== Free Photo & Video Vault v0.0.2 - Directory Traversal References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2271 Release Date: ============= 2021-06-20 Vulnerability Laboratory ID VL-ID: ==================================== 227...
CVE-2018-20371
PhotoRange Photo Vault 1.2 appends the password to the URI for authorization, which makes it easier for remote attackers to bypass intended GET restrictions via a brute-force approach, as demonstrated by "GET /login.htmlpasswd1" and "GET /login.htmlpasswd2" and so on...
Default credentials
PhotoRange Photo Vault 1.2 appends the password to the URI for authorization, which makes it easier for remote attackers to bypass intended GET restrictions via a brute-force approach, as demonstrated by "GET /login.htmlpasswd1" and "GET /login.htmlpasswd2" and so on...
CVE-2018-20371
PhotoRange Photo Vault 1.2 appends the password to the URI for authorization, which makes it easier for remote attackers to bypass intended GET restrictions via a brute-force approach, as demonstrated by "GET /login.htmlpasswd1" and "GET /login.htmlpasswd2" and so on...
CVE-2018-20371
PhotoRange Photo Vault 1.2 appends the password to the URI for authorization, which makes it easier for remote attackers to bypass intended GET restrictions via a brute-force approach, as demonstrated by "GET /login.htmlpasswd1" and "GET /login.htmlpasswd2" and so on...
CVE-2018-20371
CVE-2018-20371 affects PhotoRange Photo Vault 1.2. The issue is failure to securely handle authentication by appending the password to the URI, enabling brute-force like access to GET-restricted pages (e.g., /login.html__passwd1, /login.html__passwd2). Multiple records (NVD, Red Hat advisory, CVE...
Private Photo Vault - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities
HackApp vulnerability scanner discovered that application Private Photo Vault published at the 'play' market has multiple vulnerabilities...