rodber/chevereto-free

Releases33

Frequency2 months 16 hours

Last Release over 4 years ago

Stars2.79K

👉 Go to chevereto/chevereto for newer Chevereto releases. Self-hosted image sharing software, your own Flickr/Imgur with your very own rules.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2020-37186 ↗	Feb 11, 2026Wednesday, 11 February 2026, 21:16	9.8 CRITICAL	—
Chevereto 3.13.4 Core contains a remote code execution vulnerability that allows attackers to inject malicious code during database configuration installation. Attackers can manipulate the database table prefix parameter to write a PHP shell file and execute arbitrary system commands through a crafted POST request.
CVE-2018-12030 ↗	Jun 15, 2018Friday, 15 June 2018, 16:29	—	3.5 LOW
Chevereto Free before 1.0.13 has XSS.