Blackdot Imageview vulnerabilities
2 known vulnerabilities affecting blackdot/imageview.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2006-5554P3HIGHCVSS 7.5PoC≤ 52006-10-26
CVE-2006-5554 [HIGH] CVE-2006-5554: Directory traversal vulnerability in index.php in Imageview 5 allows remote attackers to read or exe
Directory traversal vulnerability in index.php in Imageview 5 allows remote attackers to read or execute arbitrary local files via a .. (dot dot) in the user_settings cookie, as demonstrated by using the MyFile parameter in albumview.php to upload a text/plain .gif file containing PHP code, which is executed by index.php.
nvd
CVE-2007-2425P4MEDIUMCVSS 5.0PoCv5.32007-05-02
CVE-2007-2425 [MEDIUM] CVE-2007-2425: Directory traversal vulnerability in fileview.php in Imageview 5.3 allows remote attackers to read a
Directory traversal vulnerability in fileview.php in Imageview 5.3 allows remote attackers to read arbitrary files via a .. (dot dot) in the album parameter.
nvd