RSS   Vulnerabilities for 'Gnuteca'   RSS

2020-05-09
 
CVE-2020-12766

CWE-89
 

 
Gnuteca 3.8 allows action=main:search:simpleSearch SQL Injection via the exemplaryStatusId parameter.

 
 
CVE-2020-12764

CWE-22
 

 
Gnuteca 3.8 allows file.php?folder=/&file= Directory Traversal.

 

 >>> Vendor: Solis 2 Products
Gnuteca
Miolo


Copyright 2024, cxsecurity.com

 

Back to Top