Skip to main content

Image Sharing Script

3 CVEs product

Monthly

CVE-2019-7431 MEDIUM POC This Month

PHP Scripts Mall Image Sharing Script 1.3.4 has directory traversal via a direct request for a listing of an uploads directory. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP Path Traversal Information Disclosure Image Sharing Script
NVD
CVSS 3.0
6.5
EPSS
1.4%
CVE-2019-7430 MEDIUM POC This Month

PHP Scripts Mall Image Sharing Script 1.3.4 has HTML injection via the Search Bar. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Image Sharing Script
NVD
CVSS 3.0
5.3
EPSS
1.0%
CVE-2018-6902 MEDIUM POC This Month

PHP Scripts Mall Image Sharing Script 1.3.3 has XSS via the Full Name field in an Edit Profile action. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Image Sharing Script
NVD
CVSS 3.0
5.4
EPSS
0.5%
EPSS 1% CVSS 6.5
MEDIUM POC This Month

PHP Scripts Mall Image Sharing Script 1.3.4 has directory traversal via a direct request for a listing of an uploads directory. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP Path Traversal Information Disclosure +1
NVD
EPSS 1% CVSS 5.3
MEDIUM POC This Month

PHP Scripts Mall Image Sharing Script 1.3.4 has HTML injection via the Search Bar. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Image Sharing Script
NVD
EPSS 1% CVSS 5.4
MEDIUM POC This Month

PHP Scripts Mall Image Sharing Script 1.3.3 has XSS via the Full Name field in an Edit Profile action. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Image Sharing Script
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy