Maianscriptworld Maian Uploader — known CVE vulnerabilities
Every CVE whose affected-product data names Maianscriptworld Maian Uploader, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2014-10004 — CVSS 7.5 (high): SQL injection vulnerability in admin/data_files/move.php in Maian Uploader 4.0 allows remote attackers to execute arbitrary SQL commands…
CVE-2014-10006 — CVSS 6.8 (medium): Multiple cross-site request forgery (CSRF) vulnerabilities in Maian Uploader 4.0 allow remote attackers to hijack the authentication of…
CVE-2014-10005 — CVSS 5.0 (medium): Maian Uploader 4.0 allows remote attackers to obtain sensitive information via a request without the height parameter to load_flv.js.php…
CVE-2008-2202 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Maian Uploader 4.0 allow remote attackers to inject arbitrary web script or HTML via…