CVE-2019-25709

CRITICAL

CF Image Hosting Script 1.6.5 Unauthorized Database Access

Title source: cna
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-25709. PoCs published by David Tavarez.

AI-analyzed exploit summary This exploit targets CF Image Hosting Script 1.6.5 by downloading and decoding a base64-encoded database file, extracting image delete IDs, and sending deletion requests to remove all pictures. It leverages an insecure direct object reference (IDOR) vulnerability.

Description

CF Image Hosting Script 1.6.5 allows unauthenticated attackers to download and decode the application database by accessing the imgdb.db file in the upload/data directory. Attackers can extract delete IDs stored in plaintext from the deserialized database and use them to delete all pictures via the d parameter.

Exploits (1)

exploitdb WORKING POC
by David Tavarez · pythonwebappsphp
https://www.exploit-db.com/exploits/46094

This exploit targets CF Image Hosting Script 1.6.5 by downloading and decoding a base64-encoded database file, extracting image delete IDs, and sending deletion requests to remove all pictures. It leverages an insecure direct object reference (IDOR) vulnerability.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: CF Image Hosting Script 1.6.5
No auth needed
Prerequisites: Network access to the target · Base64-encoded database file accessible at /upload/data/imgdb.db
devstral-2 · analyzed Apr 12, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit exploit
ExploitDB-46094
https://www.exploit-db.com/exploits/46094
Product product
Official Product Homepage
https://davidtavarez.github.io/
Product product
Product Reference
http://forum.codefuture.co.uk/showthread.php?tid=73141
Third Party Advisory third-party-advisory
VulnCheck Advisory: CF Image Hosting Script 1.6.5 Unauthorized Database Access
https://www.vulncheck.com/advisories/cf-image-hosting-script-unauthorized-database-access

Scores

CVSS v3 9.8
EPSS 0.0061
EPSS Percentile 44.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact total

Details

CWE
CWE-552
Status published
Products (2)
codefuture/image_hosting_script 1.6.5
Davidtavarez/CF Image Hosting Script 1.6.5
Published Apr 12, 2026
Tracked Since Apr 12, 2026