Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
avatar vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2021-36803
Akaunting version 2.1.12 and previous versions suffers from a persistent (type II) cross-site scripting (XSS) vulnerability in processing user-supplied avatar images. This issue was fixed in version 2.1.13 of the product.
Akaunting Akaunting
5
CVSSv2
CVE-2005-1031
RUNCMS 1.1A, and possibly other products based on e-Xoops (exoops), when "Allow custom avatar upload" is enabled, does not properly verify uploaded files, which allows remote malicious users to upload arbitrary files.
Runcms Runcms 1.1a
E-xoops E-xoops 1.05r3
Runcms Runcms 1.1
6.8
CVSSv2
CVE-2022-25115
A remote code execution (RCE) vulnerability in the Avatar parameter under /admin/?page=user/manage_user of Home Owners Collection Management System v1.0 allows malicious users to execute arbitrary code via a crafted PNG file.
Home Owners Collection Management System Project Home Owners Collection Management System 1.0
4
CVSSv2
CVE-2018-1354
An improper access control vulnerability in Fortinet FortiManager 6.0.0, 5.6.5 and below versions, FortiAnalyzer 6.0.0, 5.6.5 and below versions allows a regular user edit the avatar picture of other users with arbitrary content.
Fortinet Fortimanager
Fortinet Fortianalyzer
5
CVSSv2
CVE-2017-1000419
phpBB version 3.2.0 is vulnerable to SSRF in the Remote Avatar function resulting allowing an malicious user to perform port scanning, requesting internal content and potentially attacking such internal services via the web application.
Phpbb Phpbb 3.2.0
5
CVSSv2
CVE-2006-3954
Directory traversal vulnerability in usercp.php in MyBB (aka MyBulletinBoard) 1.x allows remote malicious users to read arbitrary files via a .. (dot dot) in the gallery parameter in a (1) avatar or (2) do_avatar action.
Mybulletinboard Mybulletinboard 1.10
Mybulletinboard Mybulletinboard 1.14
Mybulletinboard Mybulletinboard 1.0 Final
Mybulletinboard Mybulletinboard 1.1.1
Mybulletinboard Mybulletinboard 1.0 Rc4
Mybulletinboard Mybulletinboard 1.00 Rc4
Mybulletinboard Mybulletinboard 1.00 Rc3
Mybulletinboard Mybulletinboard 1.1.3
Mybulletinboard Mybulletinboard 1.20
Mybulletinboard Mybulletinboard 1.0.3
Mybulletinboard Mybulletinboard 1.00 Rc4 Security Patch
Mybulletinboard Mybulletinboard 1.04
Mybulletinboard Mybulletinboard 1.01
Mybulletinboard Mybulletinboard 1.00 Rc1
Mybulletinboard Mybulletinboard 1.1.5
Mybulletinboard Mybulletinboard 1.0 Pr2
Mybulletinboard Mybulletinboard 1.00 Rc2
Mybulletinboard Mybulletinboard 1.1
Mybulletinboard Mybulletinboard 1.1.4
Mybulletinboard Mybulletinboard 1.0.1
Mybulletinboard Mybulletinboard 1.0.4
Mybulletinboard Mybulletinboard 1.1.2
9.3
CVSSv2
CVE-2007-1725
SQL injection vulnerability in index.php in IceBB 1.0-rc5 allows remote authenticated users to execute arbitrary SQL commands via the filename of an uploaded file to the avatar function, as demonstrated by setting admin privileges.
Icebb Icebb 1.0 Rc 5
2 EDB exploits
7.5
CVSSv2
CVE-2007-1235
Unrestricted file upload vulnerability in sitex allows remote malicious users to upload arbitrary PHP code via an avatar filename with a double extension such as .php.jpg, which fails verification and is saved as a .php file.
Bj Sintay Sitex 0.7.3
6.5
CVSSv2
CVE-2019-11447
An issue exists in CutePHP CuteNews 2.1.2. An attacker can infiltrate the server through the avatar upload process in the profile area via the avatar_file field to index.php?mod=main&opt=personal. There is no effective control of $imgsize in /core/modules/dashboard.php. The h...
Cutephp Cutenews 2.1.2
8 Github repositories
6.5
CVSSv2
CVE-2018-18382
Advanced HRM 1.6 allows Remote Code Execution via PHP code in a .php file to the user/update-user-avatar URI, which can be accessed through an "Update Profile" "Change Picture" (aka user/edit-profile) action.
Coderpixel Advanced Hrm 1.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »