Yabsoft Mega File Hosting Script — known CVE vulnerabilities
Every CVE whose affected-product data names Yabsoft Mega File Hosting Script, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2009-0966 — CVSS 7.5 (high): PHP remote file inclusion vulnerability in cross.php in YABSoft Mega File Hosting 1.2 allows remote attackers to execute arbitrary PHP code…
CVE-2008-2521 — CVSS 6.5 (medium): SQL injection vulnerability in members.php in YABSoft Mega File Hosting Script (aka MFH or MFHS) 1.2 allows remote authenticated users to…
CVE-2009-3647 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in emaullinks.php in YABSoft Mega File Hosting Script (aka MFH or MFHS) 1.2 allows remote…