Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2015-1015

Malware in sbrugna...

7.5CVSS7.8AI score0.02277EPSS
Exploits2References2
CNVD
CNVD
added 2016/10/20 12:0 a.m.2 views

Wordpress wptf-image-gallery information disclosure vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language. wptf-image-gallery is one of the gallery plugin for full-screen display. An information disclosure vulnerability exists in Wordpress wptf-image-gallery plugin v1.03, which can be exploited ...

7.5CVSS6.3AI score0.02277EPSS
Exploits2References1
NVD
NVD
added 2016/10/06 2:59 p.m.8 views

CVE-2015-1000007

Remote file download vulnerability in wptf-image-gallery v1.03...

7.5CVSS7.6AI score0.02277EPSS
Exploits2References1
Prion
Prion
added 2016/10/06 2:59 p.m.8 views

Remote file inclusion

Remote file download vulnerability in wptf-image-gallery v1.03...

5CVSS7.1AI score0.02277EPSS
Exploits2References1Affected Software1
CVE
CVE
added 2016/10/06 2:0 p.m.41 views

CVE-2015-1000007

CVE-2015-1000007 corresponds to a remote file download vulnerability in the WordPress plugin “wptf-image-gallery” v1.03. The issue arises in the plugin’s file handling in lib-mbox/ajax_load.php, where user input is not properly sanitized and access control is not enforced, enabling an unauthentic...

7.5CVSS8AI score0.02277EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2016/10/06 2:0 p.m.18 views

CVE-2015-1000007

Remote file download vulnerability in wptf-image-gallery v1.03...

7.8AI score0.02277EPSS
Exploits2References1
0day.today
0day.today
added 2015/08/10 12:0 a.m.22 views

WordPress WPTF Image Gallery 1.03 File Download Vulnerability

WordPress WPTF Image Gallery plugin version 1.03 suffers from an arbitrary remote file download vulnerability. Title: Remote file download vulnerability in wptf-image-gallery v1.03 Author: Larry W. Cashdollar, @larry0 Date: 2015-07-17 Download Site: https://wordpress.org/plugins/wptf-image-galler...

7.2AI score
Exploits0
Patchstack
Patchstack
added 2015/08/10 12:0 a.m.11 views

WordPress WPTF Image Gallery Plugin 1.0.3 - Aribtrary File Download

WPTF Image Gallery plugin is prone to an arbitrary file download vulnerability via "/wptf-image-gallery/lib-mbox/ajaxload.php ". It allows an attacker to download arbitrary files from the web server and get potentially sensitive information. Solution Upgrade the plugin...

4.5AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2015/08/10 12:0 a.m.13 views

WordPress Plugin WPTF Image Gallery 1.03 - Arbitrary File Download

WordPress Plugin WPTF Image Gallery 1.03 - Arbitrary File Download Title: Remote file download vulnerability in wptf-image-gallery v1.03 Author: Larry W. Cashdollar, @larry0 Date: 2015-07-17 Download Site: https://wordpress.org/plugins/wptf-image-gallery Vendor:...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2015/08/10 12:0 a.m.36 views

WordPress Plugin WPTF Image Gallery 1.03 - Arbitrary File Download

Title: Remote file download vulnerability in wptf-image-gallery v1.03 Author: Larry W. Cashdollar, @larry0 Date: 2015-07-17 Download Site: https://wordpress.org/plugins/wptf-image-gallery Vendor: https://profiles.wordpress.org/sakush100/ Vendor Notified: 0000-00-00 Vendor Contact:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2015/08/05 12:0 a.m.28 views

WordPress WPTF Image Gallery 1.03 File Download

Title: Remote file download vulnerability in wptf-image-gallery v1.03 Author: Larry W. Cashdollar, @larry0 Date: 2015-07-17 Download Site: https://wordpress.org/plugins/wptf-image-gallery Vendor: https://profiles.wordpress.org/sakush100/ Vendor Notified: 0000-00-00 Vendor Contact:...

0.5AI score
Exploits0
WPVulnDB
WPVulnDB
added 2015/07/18 12:0 a.m.17 views

wptf-image-gallery 1.0.3 - Remote File Download

Plugin is still affected and has been closed. The ./wptf-image-gallery/lib-mbox/ajaxload.php code doesn't sanitize user input or check that a user is authorized to download files. This allows an unauthenticated user to download sensitive system files: 1 PoC $ curl...

5CVSS0.5AI score0.02277EPSS
Exploits2References2Affected Software1
wpexploit
wpexploit
added 2015/07/18 12:0 a.m.24 views

wptf-image-gallery 1.0.3 - Remote File Download

Plugin is still affected and has been closed. The ./wptf-image-gallery/lib-mbox/ajaxload.php code doesn't sanitize user input or check that a user is authorized to download files. This allows an unauthenticated user to download sensitive system files: 1 $ curl...

5CVSS1.2AI score0.02277EPSS
Exploits2References2
Rows per page
Query Builder