Known Vulnerabilities for products from Pixelpost
Listed below are 17 of the newest known vulnerabilities associated with the vendor "Pixelpost".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2018-0606 json | SQL injection vulnerability in the Pixelpost v1.7.3 and earlier allows remote authenticated attackers to execute arbitrary SQ... | 7.2 - HIGH | 2018-06-26 | 2018-08-17 |
| CVE-2018-0605 json | Cross-site scripting vulnerability in Pixelpost v1.7.3 and earlier allows remote attackers to inject arbitrary web script or ... | 6.1 - MEDIUM | 2018-06-26 | 2018-08-27 |
| CVE-2018-0604 json | Pixelpost v1.7.3 and earlier allows remote code execution via unspecified vectors. | 7.2 - HIGH | 2018-06-26 | 2019-10-03 |
| CVE-2011-3792 json | Pixelpost 1.7.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals th... | Not Provided | 2011-09-24 | 2026-04-29 |
| CVE-2011-1100 json | Multiple SQL injection vulnerabilities in admin/index.php in Pixelpost 1.7.3 allow remote authenticated users to execute arbi... | Not Provided | 2011-02-25 | 2026-04-29 |
| CVE-2010-3305 json | Cross-site request forgery (CSRF) vulnerability in pixelpost 1.7.3 could allow remote attackers to change the admin password. | 8.8 - HIGH | 2019-11-12 | 2019-11-14 |
| CVE-2009-4900 json | pixelpost 1.7.1 has XSS | 6.1 - MEDIUM | 2019-10-28 | 2019-11-01 |
| CVE-2009-4899 json | pixelpost 1.7.1 has SQL injection | 9.8 - CRITICAL | 2019-10-28 | 2019-11-01 |
| CVE-2008-3365 json | Directory traversal vulnerability in index.php in Pixelpost 1.7.1 on Windows, when register_globals is enabled, allows remote... | Not Provided | 2008-07-30 | 2026-04-23 |
| CVE-2008-0358 json | SQL injection vulnerability in index.php in Pixelpost 1.7 allows remote attackers to execute arbitrary SQL commands via the p... | Not Provided | 2008-01-18 | 2026-04-23 |
| CVE-2006-2891 json | Cross-site scripting (XSS) vulnerability in admin/index.php for Pixelpost 1-5rc1-2 and earlier allows remote attackers to inj... | 2.6 - LOW | 2006-06-07 | 2018-10-18 |
| CVE-2006-2890 json | Pixelpost 1-5rc1-2 and earlier, when register_globals is enabled, allows remote attackers to gain administrator privileges an... | 5.1 - MEDIUM | 2006-06-07 | 2018-10-18 |
| CVE-2006-2889 json | Multiple SQL injection vulnerabilities in index.php in Pixelpost 1-5rc1-2 and earlier allow remote attackers to execute arbit... | 5.1 - MEDIUM | 2006-06-07 | 2018-10-18 |
| CVE-2006-1106 json | Cross-site scripting (XSS) vulnerability in Pixelpost 1.5 beta 1 and earlier allows remote attackers to inject arbitrary web ... | Not Provided | 2006-03-09 | 2025-04-03 |
| CVE-2006-1105 json | Pixelpost 1.5 beta 1 and earlier allows remote attackers to obtain configuration information via a direct request to includes... | Not Provided | 2006-03-09 | 2025-04-03 |
| CVE-2006-1104 json | Multiple SQL injection vulnerabilities in Pixelpost 1.5 beta 1 and earlier allow remote attackers to execute arbitrary SQL co... | Not Provided | 2006-03-09 | 2025-04-03 |
| CVE-2006-0409 json | Cross-site scripting (XSS) vulnerability in index.php in Pixelpost Photoblog 1.4.3 allows remote attackers to inject arbitrar... | Not Provided | 2006-01-25 | 2025-04-03 |
Known software with vulnerabilities from Pixelpost
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Pixelpost | Pixelpost | 1.7.1-5 |