cbcvebase.

Scripteen Free Image Hosting Script vulnerabilities

4 known vulnerabilities affecting scripteen/free_image_hosting_script.

Total CVEs
4
CISA KEV
0
Public exploits
4
Exploited in wild
0
Severity breakdown
HIGH4

Vulnerabilities

Page 1 of 1
CVE-2009-4987P3HIGHCVSS 7.5PoCv2.32010-08-25
CVE-2009-4987 [HIGH] CVE-2009-4987: admin/header.php in Scripteen Free Image Hosting Script 2.3 allows remote attackers to bypass authen admin/header.php in Scripteen Free Image Hosting Script 2.3 allows remote attackers to bypass authentication and gain administrative access by setting the cookgid cookie value to 1, a different vector than CVE-2008-3211.
nvd
CVE-2008-3211P3HIGHCVSS 7.5PoCv1.2v1.2.12008-07-18
CVE-2008-3211 [HIGH] CWE-287 CVE-2008-3211: Scripteen Free Image Hosting Script 1.2 and 1.2.1 allows remote attackers to bypass authentication a Scripteen Free Image Hosting Script 1.2 and 1.2.1 allows remote attackers to bypass authentication and gain administrative access by setting the cookid cookie value to 1.
nvd
CVE-2009-2892P3HIGHCVSS 7.5PoCv2.32009-08-20
CVE-2009-2892 [HIGH] CWE-89 CVE-2009-2892: Multiple SQL injection vulnerabilities in header.php in Scripteen Free Image Hosting Script 2.3 allo Multiple SQL injection vulnerabilities in header.php in Scripteen Free Image Hosting Script 2.3 allow remote attackers to execute arbitrary SQL commands via a (1) cookid or (2) cookgid cookie.
nvd
CVE-2008-3212P3HIGHCVSS 7.5PoCv1.2.12008-07-18
CVE-2008-3212 [HIGH] CWE-89 CVE-2008-3212: Multiple SQL injection vulnerabilities in Scripteen Free Image Hosting Script 1.2.1 allow remote att Multiple SQL injection vulnerabilities in Scripteen Free Image Hosting Script 1.2.1 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameter to admin/login.php, or the (3) uname or (4) pass parameter to login.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third
nvd
Scripteen Free Image Hosting Script vulnerabilities | cvebase