NaTaSaB

Short Name: [None Entered]
Previous Names: [None Entered]
URL: http://yapig.sourceforge.net/ [visit link]
Email: natasabusers.sourceforge.net
Security URL: [None Entered]
Security Email: [None Entered]
Knowledge Base: [None Entered]
Notes: Bug tracking: http://sourceforge.net/tracker/?group_id=93674&atid=605076

Vulnerabilities by Vendor Product

NaTaSaB

NaTaSaB
YaPiG Watch-list
0.92b
OSVDB ID: 8658 YaPiG functions.php Arbitrary Command Execution
OSVDB ID: 8657 YaPiG add_comment.php Arbitrary Command Execution
0.92.2
OSVDB ID: 10904 YaPiG Comments XSS
OSVDB ID: 17115 YaPiG upload.php File Extension Validation Failure Arbitrary Command Execution
OSVDB ID: 17120 YaPiG upload.php dir Variable Arbitrary Directory Manipulation
OSVDB ID: 17116 YaPiG global.php BASE_DIR Parameter Local File Inclusion
OSVDB ID: 17118 YaPiG view.php Multiple Method/Field XSS
OSVDB ID: 17119 YaPiG view.php phid Variable Path Disclosure
OSVDB ID: 17121 YaPiG USE_COOKIES Option Cleartext Authentication Credential Storage
0.92.1
OSVDB ID: 10904 YaPiG Comments XSS
0.92 stable
OSVDB ID: 10904 YaPiG Comments XSS
0.91-1 unstable
OSVDB ID: 10904 YaPiG Comments XSS
0.91 unstable
OSVDB ID: 10904 YaPiG Comments XSS
0.90-1 unstable
OSVDB ID: 10904 YaPiG Comments XSS
0.90 unstable
OSVDB ID: 10904 YaPiG Comments XSS
0.83BETA
OSVDB ID: 10904 YaPiG Comments XSS
0.82BETA
OSVDB ID: 10904 YaPiG Comments XSS
0.81BETA
OSVDB ID: 10904 YaPiG Comments XSS
0.80BETA
OSVDB ID: 10904 YaPiG Comments XSS
0.72a
OSVDB ID: 10904 YaPiG Comments XSS
0.9x
OSVDB ID: 11025 YaPiG Protected Directory Arbitrary Image Access
0.8x
OSVDB ID: 11025 YaPiG Protected Directory Arbitrary Image Access
0.7x
OSVDB ID: 11025 YaPiG Protected Directory Arbitrary Image Access
0.93
OSVDB ID: 17115 YaPiG upload.php File Extension Validation Failure Arbitrary Command Execution
OSVDB ID: 17120 YaPiG upload.php dir Variable Arbitrary Directory Manipulation
OSVDB ID: 17118 YaPiG view.php Multiple Method/Field XSS
OSVDB ID: 17119 YaPiG view.php phid Variable Path Disclosure
OSVDB ID: 17121 YaPiG USE_COOKIES Option Cleartext Authentication Credential Storage
OSVDB ID: 17117 YaPiG last_gallery.php YAPIG_PATH Parameter Remote File Inclusion
0.94
OSVDB ID: 17115 YaPiG upload.php File Extension Validation Failure Arbitrary Command Execution
OSVDB ID: 17120 YaPiG upload.php dir Variable Arbitrary Directory Manipulation
OSVDB ID: 17118 YaPiG view.php Multiple Method/Field XSS
OSVDB ID: 17119 YaPiG view.php phid Variable Path Disclosure
OSVDB ID: 17121 YaPiG USE_COOKIES Option Cleartext Authentication Credential Storage
OSVDB ID: 17117 YaPiG last_gallery.php YAPIG_PATH Parameter Remote File Inclusion
0.95b
OSVDB ID: 19958 YaPiG Image-related Comment Homepage Field XSS
OSVDB ID: 19959 YaPiG view.php img_size Parameter XSS
0.94u
OSVDB ID: 19958 YaPiG Image-related Comment Homepage Field XSS
OSVDB ID: 19959 YaPiG view.php img_size Parameter XSS
0.95
OSVDB ID: 75697 YaPiG /template/default/add_comment_form.php I_ADD_COMMENT Parameter XSS
OSVDB ID: 75700 YaPiG /template/default/face_begin.php I_TITLE Parameter XSS
OSVDB ID: 75698 YaPiG /template/default/admin_task_bar.php I_ADMIN_TASKS Parameter XSS
OSVDB ID: 75699 YaPiG /template/default/delete_gallery_form.php I_SELECT_OPT Parameter XSS
OSVDB ID: 75701 YaPiG /slideshow.php interval Parameter XSS
0.95
0.95
0.95
0.95



The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2002 - 2014 Open Sourced Vulnerability Database (OSVDB), All Rights Reserved.
Privacy Statement - Terms of Use