123 matches found
CVE-2023-53939
TinyWebGallery v2.5 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts through the folder name parameter. Attackers can edit album folder names with script tags to execute arbitrary JavaScript when other users view the affected...
EUVD-2025-204340
TinyWebGallery v2.5 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts through the folder name parameter. Attackers can edit album folder names with script tags to execute arbitrary JavaScript when other users view the affected...
CVE-2023-53939
TinyWebGallery v2.5 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts through the folder name parameter. Attackers can edit album folder names with script tags to execute arbitrary JavaScript when other users view the affected...
CVE-2023-53939
TinyWebGallery v2.5 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts through the folder name parameter. Attackers can edit album folder names with script tags to execute arbitrary JavaScript when other users view the affected...
CVE-2023-53939 TinyWebGallery v2.5 Stored Cross-Site Scripting via Folder Name Parameter
TinyWebGallery v2.5 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts through the folder name parameter. Attackers can edit album folder names with script tags to execute arbitrary JavaScript when other users view the affected...
CVE-2023-53939 TinyWebGallery v2.5 Stored Cross-Site Scripting via Folder Name Parameter
TinyWebGallery v2.5 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts through the folder name parameter. Attackers can edit album folder names with script tags to execute arbitrary JavaScript when other users view the affected...
CVE-2023-53939
CVE-2023-53939 concerns TinyWebGallery v2.5 with a stored cross-site scripting (XSS) flaw triggered via the folder name parameter in album folders. Authenticated users can insert script tags into folder names, which then execute arbitrary JavaScript when other users view affected gallery pages. T...
EUVD-2023-60209
TinyWebGallery v2.5 contains a remote code execution vulnerability in the admin upload functionality that allows unauthenticated attackers to upload malicious PHP files. Attackers can upload .phar files with embedded system commands to execute arbitrary code on the server by accessing the uploade...
TinyWebGallery 安全漏洞
TinyWebGallery is a PHP photo album system of TinyWebGallery open source. A security vulnerability exists in TinyWebGallery v2.5, which stems from a stored cross-site scripting vulnerability that could lead to the execution of arbitrary JavaScript...
CVE-2023-53922
TinyWebGallery v2.5 contains a remote code execution vulnerability in the admin upload functionality that allows unauthenticated attackers to upload malicious PHP files. Attackers can upload .phar files with embedded system commands to execute arbitrary code on the server by accessing the uploade...
CVE-2023-53922
TinyWebGallery v2.5 contains a remote code execution vulnerability in the admin upload functionality that allows unauthenticated attackers to upload malicious PHP files. Attackers can upload .phar files with embedded system commands to execute arbitrary code on the server by accessing the uploade...
CVE-2023-53922 TinyWebGallery v2.5 Remote Code Execution via Unrestricted File Upload
TinyWebGallery v2.5 contains a remote code execution vulnerability in the admin upload functionality that allows unauthenticated attackers to upload malicious PHP files. Attackers can upload .phar files with embedded system commands to execute arbitrary code on the server by accessing the uploade...
CVE-2023-53922
TinyWebGallery v2.5 is affected by a remote code execution vulnerability in the admin upload function. Unauthenticated attackers can upload .phar files to the server and trigger arbitrary code execution by accessing the uploaded file URL. The issue stems from unrestricted file upload in the admin...
PT-2025-51960
Name of the Vulnerable Software and Affected Versions TinyWebGallery version 2.5 Description TinyWebGallery version 2.5 contains a remote code execution issue in the admin upload functionality. An unauthenticated attacker can upload malicious PHP files, specifically .phar files, to execute...
TinyWebGallery 代码问题漏洞
TinyWebGallery is a PHP photo album system of TinyWebGallery open source. A code issue vulnerability exists in TinyWebGallery version 2.5, which stems from improper upload functionality by the administrator and could lead to remote code execution...
EUVD-2013-2570
Malware in sbrugna...
EUVD-2011-3767
Malware in sbrugna...
EUVD-2012-2909
Malware in sbrugna...
EUVD-2006-1802
Malware in sbrugna...
EUVD-2012-2910
Malware in sbrugna...