Lucene search
K

6 matches found

Packet Storm
Packet Storm
added 2021/02/26 12:0 a.m.383 views

Zenphoto CMS 1.5.7 Shell Upload

Authenticated arbitrary file upload to RCE Product : Zenphoto Affected : Zenphoto CMS - = 1.5.7 Attack Type : Remote login then go to plugins then go to uploader and press on the check box elFinder then press apply , after that you go to upload then FileselFinder drag and drop any malicious php...

7.1AI score0.04722EPSS
Exploits3
Packet Storm
Packet Storm
added 2016/03/18 12:0 a.m.37 views

Zenphoto 1.4.11 Remote File Inclusion

Security Advisory - Curesec Research Team 1. Introduction Affected Product: Zenphoto 1.4.11 Fixed in: 1.4.12 Fixed Version Link: https://github.com/zenphoto/zenphoto/archive/ zenphoto-1.4.12.zip Vendor Website: http://www.zenphoto.org/ Vulnerability Type: RFI Remote Exploitable: Yes Reported to...

0.2AI score
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2015/05/28 12:0 a.m.29 views

JVN#68452022: Zenphoto vulnerable to cross-site scripting

Zenphoto is a content management system CMS. Zenphoto contains a cross-site scripting vulnerability CWE-79 due to a flaw in processing encoded user-supplied input. Impact An arbitrary script may be executed on the user's web browser. Solution Update the software Update to the latest version...

4.3CVSS5.8AI score0.01194EPSS
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

Zenphoto CMS 1.3 - Multiple CSRF Vulnerabilities

No description provided by source. !--- Title: Zenphoto CMS 1.3 Multiple CSRF Vulnerabilities Author: 10n1z3d 10n1z3datwdotcn Date: Wed 14 Jul 2010 12:48:56 PM EEST Vendor: http://www.zenphoto.org/ Download: http://zenphoto.googlecode.com/files/zenphoto-1.3.tar.gz --- -= CSRF PoC 1 - Change Admin...

7.1AI score
Exploits0
0day.today
0day.today
added 2010/07/14 12:0 a.m.17 views

Zenphoto CMS 1.3 Multiple CSRF Vulnerabilities

Exploit for php platform in category web applications ============================================== Zenphoto CMS 1.3 Multiple CSRF Vulnerabilities ============================================== Date: Wed 14 Jul 2010 12:48:56 PM EEST Vendor: http://www.zenphoto.org/ Download:...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2010/07/14 12:0 a.m.25 views

ZenPhoto CMS 1.3 - Multiple Cross-Site Request Forgery Vulnerabilities

Date: Wed 14 Jul 2010 12:48:56 PM EEST Vendor: http://www.zenphoto.org/ Download: http://zenphoto.googlecode.com/files/zenphoto-1.3.tar.gz --- -= CSRF PoC 1 - Change Admin Password =- Zenphoto CMS 1.3 Multiple CSRF Vulnerabilities - Change Admin Password input type="...

7.4AI score
Exploits0
Rows per page
Query Builder