{"vulnerability": "CVE-2019-19734", "sightings": [{"uuid": "73a260dc-d8f2-4455-b326-0d91b122c952", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-19734", "type": "seen", "source": "https://t.me/ctinow/210615", "content": "https://ift.tt/hIEXCBk\nCVE-2019-19734 | MFScripts YetiShare 3.5.2 _account_move_file_in_folder.ajax.php fileIds sql injection", "creation_timestamp": "2024-03-18T15:16:35.000000Z"}, {"uuid": "cc1acfd1-9a46-4e68-9ed9-425dc693ec1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-19734", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mq4t24fqwe25", "content": "\ud83d\udccc CVE-2019-19734 - _account_move_file_in_folder.ajax.php in MFScripts YetiShare 3.5.2 directly inserts values from the fileIds parameter into a SQL string. This allows a... https://www.cyberhub.blog/cves/CVE-2019-19734", "creation_timestamp": "2026-07-08T09:37:06.511987Z"}]}