10 matches found
EUVD-2011-1078
Malware in sbrugna...
Denial of Service Vulnerability in PhotoPad's Handling of BMP Files
PhotoPad is a photo editor. A denial of service vulnerability exists in PhotoPad's handling of BMP files. An attacker can exploit the vulnerability to construct a malformed BMP image and cause the program to crash...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Cherry-Design Photopad 1.2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 id or 2 datatitle parameters in an edit action to files.php, or 3 id parameter in a view action to gallery.php...
CVE-2011-1063
Multiple cross-site scripting XSS vulnerabilities in Cherry-Design Photopad 1.2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 id or 2 datatitle parameters in an edit action to files.php, or 3 id parameter in a view action to gallery.php...
CVE-2011-1063
CVE-2011-1063 affects Cherry-Design Photopad 1.2.0. The vulnerability is due to input sanitation errors in files.php (parameters id and data[title]) and gallery.php (parameter id in view action), enabling remote XSS attacks. Exploitation could allow injection of arbitrary HTML/JavaScript in the v...
HTB22828: Multiple XSS vulnerabilities in Photopad
Vulnerability ID: HTB22828 Reference: http://www.htbridge.ch/advisory/multiplexssvulnerabilitiesinphotopad.html Product: Photopad Vendor: Cherry-Design http://www.cherry-software.spb.ru/ Vulnerable Version: 1.2.0 Vendor Notification: 01 February 2011 Vulnerability Type: XSS Cross Site Scripting...
Photopad 1.2 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/46385/info Photopad is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...
Photopad 1.2 - Multiple Cross-Site Scripting Vulnerabilities
Photopad 1.2 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/46385/info Photopad is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrar...
Photopad 1.2.0 Cross Site Scripting
Vulnerability ID: HTB22828 Reference: http://www.htbridge.ch/advisory/multiplexssvulnerabilitiesinphotopad.html Product: Photopad Vendor: Cherry-Design http://www.cherry-software.spb.ru/ Vulnerable Version: 1.2.0 Vendor Notification: 01 February 2011 Vulnerability Type: XSS Cross Site Scripting...
Cross-site Scripting (XSS) Vulnerabilities in Photopad
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Photopad which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerabilities in Photopad: CVE-2011-1063 1.1 The vulnerability exists due to input sanitation errors in the...