CVEブラウザに戻る

CVE-2008-4549

LOW

2.6

CVSS Severity Score

EPSS Score0.1460%

EPSS Percentile15.84th

Published2008年10月14日

Last Modified2026年4月23日

Vulnerability Description

The ImageShack Toolbar ActiveX control (ImageShackToolbar.dll) in ImageShack Toolbar 4.5.7, possibly including 4.5.7.69, allows remote attackers to force the upload of arbitrary image files to the ImageShack site via a file: URI argument to the BuildSlideShow method.

Affected Platforms (CPE)

📦

Imageshack

Imageshack Toolbar

= 4.5.7

📦

Imageshack

Imageshack Toolbar

= 4.5.7.69

References & Advisories

🔗 http://osvdb.org/40628

🔗 http://secunia.com/advisories/28644

🔗 http://securityreason.com/securityalert/4410

🔗 http://www.securityfocus.com/archive/1/486941/100/200/threaded

🔗 http://www.securityfocus.com/bid/27439

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/39921

🔗 https://www.exploit-db.com/exploits/4981

🔗 http://osvdb.org/40628

関連する脆弱性情報

CVE-2008-535310.0

The Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and...

CVE-2008-535510.0

The "Java Update" feature for Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 1...

CVE-2008-665110.0

Static code injection vulnerability in edithistory.php in OxYProject OxYBox 0.85 allows remote attackers to inject arbitrary PHP c...

CVE-2008-461510.0

Unspecified vulnerability in i_utils.asp in PortalApp before 4.01a has unknown impact and attack vectors.