Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2012-5227

Malware in sbrugna...

7.5CVSS6.4AI score0.01357EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2012-1582

Malware in sbrugna...

4.3CVSS6.4AI score0.01206EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/22 1:33 a.m.9 views

CVE-2012-5304

Static code injection vulnerability in administration/install.php in YVS Image Gallery allows remote attackers to inject arbitrary PHP code into functions/dbconnect.php via unspecified vectors. NOTE: this is only a vulnerability when the administrator does not follow recommendations in the...

7.5CVSS7.6AI score0.01357EPSS
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

YVS Image Gallery SQL Injection

No description provided by source. -=+ Application: YVS Image Gallery -=+ Version: 0.0.0.1 -=+ Vendor's URL: http://yvs.vacau.com/gallery.html -=+ Platform: Windows\Linux\Unix -=+ Bug type: Sql INJECTIONS -=+ Exploitation: Remote -=- -=+ Author: Corrado Liotta Aka CorryL corryl80atgmaildotcom -=+...

7.1AI score
Exploits0
NVD
NVD
added 2012/10/06 10:55 p.m.20 views

CVE-2012-5304

Static code injection vulnerability in administration/install.php in YVS Image Gallery allows remote attackers to inject arbitrary PHP code into functions/dbconnect.php via unspecified vectors. NOTE: this is only a vulnerability when the administrator does not follow recommendations in the...

7.5CVSS7.2AI score0.01357EPSS
Exploits0References2
CVE
CVE
added 2012/10/06 10:0 p.m.46 views

CVE-2012-5304

Summary: CVE-2012-5304 refers to a static code injection vulnerability in the YVS Image Gallery, specifically in administration/install.php, allowing remote attackers to inject arbitrary PHP code into functions/db_connect.php via unspecified vectors. The vulnerability is noted to occur when admin...

7.5CVSS7.4AI score0.01357EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2012/10/06 10:0 p.m.26 views

CVE-2012-5304

Static code injection vulnerability in administration/install.php in YVS Image Gallery allows remote attackers to inject arbitrary PHP code into functions/dbconnect.php via unspecified vectors. NOTE: this is only a vulnerability when the administrator does not follow recommendations in the...

7.2AI score0.01357EPSS
Exploits0References2
NVD
NVD
added 2012/10/06 9:55 p.m.12 views

CVE-2012-1564

Cross-site scripting XSS vulnerability in administration/createalbum.php in YVS Image Gallery allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.7AI score0.01206EPSS
Exploits1References4
Prion
Prion
added 2012/10/06 9:55 p.m.9 views

Cross site scripting

Cross-site scripting XSS vulnerability in administration/createalbum.php in YVS Image Gallery allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.1AI score0.01206EPSS
Exploits1References4
CVE
CVE
added 2012/10/06 9:0 p.m.43 views

CVE-2012-1564

The CVE-2012-1564 entry concerns a Cross-site scripting (XSS) vulnerability in the YVS Image Gallery, specifically in administration/create_album.php. The vulnerability allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. The available connected documents confir...

4.3CVSS5.8AI score0.01206EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2012/10/06 9:0 p.m.15 views

CVE-2012-1564

Cross-site scripting XSS vulnerability in administration/createalbum.php in YVS Image Gallery allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.7AI score0.01206EPSS
Exploits1References4
securityvulns
securityvulns
added 2012/03/19 12:0 a.m.71 views

YVS Image Gallery Sql injection

-=--------------------ADVISORY-------------------=- YVS Image Gallery Author: Corrado Liotta Aka CorryL [email protected] -=-----------------------------------------------=- -=+ Application: YVS Image Gallery -=+ Version: 0.0.0.1 -=+ Vendor's URL: http://yvs.vacau.com/gallery.html -=+ Platform:...

7.2AI score
Exploits0
securityvulns
securityvulns
added 2012/03/19 12:0 a.m.94 views

Case YVS Image Gallery

http://osvdb.org/show/osvdb/79477 The software "YVS Image Gallery" seems to be full of security issues. For example one can have lots of fun with this. Copy from installation.php: """ caseisset$POST'dbname': $host = $POST'host'; $dbname = $POST'dbname'; $dbusername = $POST'dbusername'; $dbpasswor...

7.2AI score
Exploits0
0day.today
0day.today
added 2012/02/26 12:0 a.m.25 views

YVS Image Gallery Sql Injection

Exploit for php platform in category web applications -=+ Application: YVS Image Gallery -=+ Version: 0.0.0.1 -=+ Vendor's URL: http://yvs.vacau.com/gallery.html -=+ Platform: Windows\Linux\Unix -=+ Bug type: Sql INJECTIONS -=+ Exploitation: Remote -=- -=+ Author: Corrado Liotta Aka CorryL...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2012/02/25 12:0 a.m.27 views

YVS Image Gallery - SQL Injection

YVS Image Gallery - SQL Injection -=+ Application: YVS Image Gallery -=+ Version: 0.0.0.1 -=+ Vendor's URL: http://yvs.vacau.com/gallery.html -=+ Platform: Windows\Linux\Unix -=+ Bug type: Sql INJECTIONS -=+ Exploitation: Remote -=- -=+ Author: Corrado Liotta Aka CorryL corryl80atgmaildotcom -=+...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2012/02/25 12:0 a.m.30 views

YVS Image Gallery - SQL Injection

-=+ Application: YVS Image Gallery -=+ Version: 0.0.0.1 -=+ Vendor's URL: http://yvs.vacau.com/gallery.html -=+ Platform: Windows\Linux\Unix -=+ Bug type: Sql INJECTIONS -=+ Exploitation: Remote -=- -=+ Author: Corrado Liotta Aka CorryL corryl80atgmaildotcom -=+ Facebook:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2012/02/24 12:0 a.m.26 views

YVS Image Gallery SQL Injection

-=--------------------ADVISORY-------------------=- YVS Image Gallery Author: Corrado Liotta Aka CorryL [email protected] -=-----------------------------------------------=- -=+ Application: YVS Image Gallery -=+ Version: 0.0.0.1 -=+ Vendor's URL: http://yvs.vacau.com/gallery.html -=+ Platform:...

0.5AI score
Exploits0
Rows per page
Query Builder