ReportizFlow
Filtered by vendor Ifoto
Subscriptions
Filtered by product Ifoto
Subscriptions
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2007-4092 | 1 Ifoto | 1 Ifoto | 2025-04-09 | N/A |
| Directory traversal vulnerability in index.php in iFoto 1.0.1 and earlier allows remote attackers to list arbitrary directories, and possibly download arbitrary photos, via a .. (dot dot) in the dir parameter. | ||||
| CVE-2006-3006 | 1 Ifoto | 1 Ifoto | 2025-04-03 | N/A |
| Cross-site scripting (XSS) vulnerability in iFoto 0.20, and possibly other versions before 0.50, allows remote attackers to inject arbitrary HTML or web script via a base64-encoded file parameter. | ||||
Page 1 of 1.