Bitscripts Bits Video Script vulnerabilities
3 known vulnerabilities affecting bitscripts/bits_video_script.
Total CVEs
3
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2010-0366P3MEDIUMCVSS 6.8PoCv2.04v2.052010-01-21
CVE-2010-0366 [MEDIUM] CWE-20 CVE-2010-0366: Multiple unrestricted file upload vulnerabilities in (1) register.php and (2) addvideo.php in BitScr
Multiple unrestricted file upload vulnerabilities in (1) register.php and (2) addvideo.php in BitScripts Bits Video Script 2.04 and 2.05 Gold Beta allow remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in an unspecified directory.
nvd
CVE-2010-0367P3HIGHCVSS 7.5PoCv2.04v2.052010-01-21
CVE-2010-0367 [HIGH] CWE-94 CVE-2010-0367: Multiple PHP remote file inclusion vulnerabilities in BitScripts Bits Video Script 2.05 Gold Beta, a
Multiple PHP remote file inclusion vulnerabilities in BitScripts Bits Video Script 2.05 Gold Beta, and possibly 2.04, allow remote attackers to execute arbitrary PHP code via a URL in the rowptem[template] parameter to (1) showcasesearch.php and (2) showcase2search.php.
nvd
CVE-2010-0365P4MEDIUMCVSS 4.3PoCv2.04v2.052010-01-21
CVE-2010-0365 [MEDIUM] CWE-79 CVE-2010-0365: Cross-site scripting (XSS) vulnerability in search.php in BitScripts Bits Video Script 2.04 and 2.05
Cross-site scripting (XSS) vulnerability in search.php in BitScripts Bits Video Script 2.04 and 2.05 Gold Beta allows remote attackers to inject arbitrary web script or HTML via the order parameter.
nvd