Lucene search
K

11 matches found

Vulnrichment
Vulnrichment
added 2026/02/01 12:56 p.m.2 views

CVE-2021-47921 Free Photo & Video Vault 0.0.2 Directory Traversal Vulnerability via Web Request

Free Photo & Video Vault 0.0.2 contains a directory traversal web vulnerability that allows remote attackers to manipulate application path requests and access sensitive system files. Attackers can exploit the vulnerability without privileges to retrieve environment variables and access...

7.1CVSS5.5AI score0.00694EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/01 12:56 p.m.34 views

CVE-2021-47921 Free Photo & Video Vault 0.0.2 Directory Traversal Vulnerability via Web Request

Free Photo & Video Vault 0.0.2 contains a directory traversal web vulnerability that allows remote attackers to manipulate application path requests and access sensitive system files. Attackers can exploit the vulnerability without privileges to retrieve environment variables and access...

7.1CVSS0.00694EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/02/01 12:56 p.m.4 views

CVE-2021-47921

Free Photo & Video Vault 0.0.2 contains a directory traversal web vulnerability that allows remote attackers to manipulate application path requests and access sensitive system files. Attackers can exploit the vulnerability without privileges to retrieve environment variables and access...

7.1CVSS5.9AI score0.00694EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/02/01 12:56 p.m.12 views

CVE-2021-47921

CVE-2021-47921 affects Free Photo & Video Vault 0.0.2. A directory traversal vulnerability exposed via web requests allows remote attackers to manipulate application path requests and access sensitive system files, including environment variables. The vulnerability is described consistently acros...

7.1CVSS5.9AI score0.00694EPSS
Exploits0References3
Vulnerability Lab
Vulnerability Lab
added 2021/06/20 12:0 a.m.69 views

Free Photo & Video Vault v0.0.2 - Directory Traversal

Document Title: =============== Free Photo & Video Vault v0.0.2 - Directory Traversal References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2271 Release Date: ============= 2021-06-20 Vulnerability Laboratory ID VL-ID: ==================================== 227...

7.4AI score
Exploits0
OSV
OSV
added 2018/12/23 2:29 a.m.6 views

CVE-2018-20371

PhotoRange Photo Vault 1.2 appends the password to the URI for authorization, which makes it easier for remote attackers to bypass intended GET restrictions via a brute-force approach, as demonstrated by "GET /login.htmlpasswd1" and "GET /login.htmlpasswd2" and so on...

9.8CVSS5.8AI score0.01579EPSS
Exploits3References1
Prion
Prion
added 2018/12/23 2:29 a.m.17 views

Default credentials

PhotoRange Photo Vault 1.2 appends the password to the URI for authorization, which makes it easier for remote attackers to bypass intended GET restrictions via a brute-force approach, as demonstrated by "GET /login.htmlpasswd1" and "GET /login.htmlpasswd2" and so on...

5CVSS9.4AI score0.01579EPSS
Exploits3References1Affected Software1
NVD
NVD
added 2018/12/23 2:29 a.m.27 views

CVE-2018-20371

PhotoRange Photo Vault 1.2 appends the password to the URI for authorization, which makes it easier for remote attackers to bypass intended GET restrictions via a brute-force approach, as demonstrated by "GET /login.htmlpasswd1" and "GET /login.htmlpasswd2" and so on...

9.8CVSS9.5AI score0.01579EPSS
Exploits3References1
Cvelist
Cvelist
added 2018/12/23 2:0 a.m.32 views

CVE-2018-20371

PhotoRange Photo Vault 1.2 appends the password to the URI for authorization, which makes it easier for remote attackers to bypass intended GET restrictions via a brute-force approach, as demonstrated by "GET /login.htmlpasswd1" and "GET /login.htmlpasswd2" and so on...

9.6AI score0.01579EPSS
Exploits3References1
CVE
CVE
added 2018/12/23 2:0 a.m.50 views

CVE-2018-20371

CVE-2018-20371 affects PhotoRange Photo Vault 1.2. The issue is failure to securely handle authentication by appending the password to the URI, enabling brute-force like access to GET-restricted pages (e.g., /login.html__passwd1, /login.html__passwd2). Multiple records (NVD, Red Hat advisory, CVE...

9.8CVSS9.4AI score0.01579EPSS
Exploits3References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:10 a.m.61 views

Private Photo Vault - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application Private Photo Vault published at the 'play' market has multiple vulnerabilities...

0.3AI score
Exploits0References1Affected Software1
Rows per page
Query Builder