MidnightBSD

Advisories for image_sharing_script_project

CVE-2018-6902 LOW

PHP Scripts Mall Image Sharing Script 1.3.3 has XSS via the Full Name field in an Edit Profile action.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
image_sharing_script_project image_sharing_script 1.3.3
CVE-2019-7430 MEDIUM

PHP Scripts Mall Image Sharing Script 1.3.4 has HTML injection via the Search Bar.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
image_sharing_script_project image_sharing_script 1.3.4
CVE-2019-7431 MEDIUM

PHP Scripts Mall Image Sharing Script 1.3.4 has directory traversal via a direct request for a listing of an uploads directory.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
image_sharing_script_project image_sharing_script 1.3.4