Vulnerabilities (CVE)

Filtered by vendor Galaxyscripts Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-6785 1 Galaxyscripts 1 Mini File Host 2024-11-21 6.8 MEDIUM N/A
Unrestricted file upload vulnerability in Mini File Host 1.5 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in an unspecified directory, as demonstrated by creating a name.php file.
CVE-2008-0357 1 Galaxyscripts 1 Mini File Host 2024-11-21 4.3 MEDIUM N/A
Directory traversal vulnerability in pages/upload.php in Galaxyscripts Mini File Host 1.2.1 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the language parameter.