RSS   Vulnerabilities for 'Gonicus system administration'   RSS

2007-01-17
 
CVE-2007-0313

 

 
Unspecified vulnerability in GONICUS System Administration (GOsa) before 2.5.8 allows remote authenticated users to modify certain settings, including the admin password, via crafted POST requests.

 
2003-12-31
 
CVE-2003-1412

CWE-94
 

 
PHP remote file inclusion vulnerability in index.php for GONiCUS System Administrator (GOsa) 1.0 allows remote attackers to execute arbitrary PHP code via the plugin parameter to (1) 3fax/1blocklists/index.php; (2) 6departamentadmin/index.php, (3) 5terminals/index.php, (4) 4mailinglists/index.php, (5) 3departaments/index.php, and (6) 2groupd/index.php in 2administration/; or (7) the base parameter to include/help.php.

 

 >>> Vendor: Gonicus 2 Products
Gonicus system administration
GOSA


Copyright 2024, cxsecurity.com

 

Back to Top