Yabsoft

Advanced Image Hosting Script

4 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2012-6039

Exploit
  • EPSS 0.42%
  • Published 26.11.2012 22:55:01
  • Last modified 11.04.2025 00:51:21

SQL injection vulnerability in view_comments.php in YABSoft Advanced Image Hosting (AIH) Script, possibly 2.3, allows remote attackers to execute arbitrary SQL commands via the gal parameter.

4.3

CVE-2009-4266

Exploit
  • EPSS 0.72%
  • Published 10.12.2009 16:30:00
  • Last modified 09.04.2025 00:30:58

Cross-site scripting (XSS) vulnerability in search.php in YABSoft Advanced Image Hosting (AIH) Script 2.2, and possibly 2.3, allows remote attackers to inject arbitrary web script or HTML via the text parameter.

7.5

CVE-2009-1032

Exploit
  • EPSS 0.2%
  • Published 20.03.2009 18:30:00
  • Last modified 09.04.2025 00:30:58

SQL injection vulnerability in gallery_list.php in YABSoft Advanced Image Hosting (AIH) Script 2.3 allows remote attackers to execute arbitrary SQL commands via the gal parameter.

7.5

CVE-2008-2536

Exploit
  • EPSS 0.32%
  • Published 03.06.2008 15:32:00
  • Last modified 09.04.2025 00:30:58

SQL injection vulnerability in out.php in YABSoft Advanced Image Hosting (AIH) Script 2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the t parameter.