22 matches found
EUVD-2020-3382
Malware in sbrugna...
EUVD-2020-3381
Malware in sbrugna...
EUVD-2020-3384
Malware in sbrugna...
EUVD-2020-3383
Malware in sbrugna...
Gambio GX SQL Injection Vulnerability
Gambio GX is a suite of e-commerce platforms from Gambio Germany. A SQL injection vulnerability exists in the admin/mobile.php file in Gambio GX versions prior to 4.0.1.0. The vulnerability stems from a lack of validation of externally entered SQL statements in database-based applications. An...
CVE-2020-10983
Gambio GX before 4.0.1.0 allows SQL Injection in admin/mobile.php...
CVE-2020-10984
Gambio GX before 4.0.1.0 allows admin/admin.php CSRF...
CVE-2020-10985
Gambio GX before 4.0.1.0 allows XSS in admin/couponadmin.php...
CVE-2020-10984
Gambio GX before 4.0.1.0 allows admin/admin.php CSRF...
CVE-2020-10983
Gambio GX before 4.0.1.0 allows SQL Injection in admin/mobile.php...
CVE-2020-10982
Gambio GX before 4.0.1.0 allows SQL Injection in admin/gvmail.php...
Sql injection
Gambio GX before 4.0.1.0 allows SQL Injection in admin/mobile.php...
Design/Logic Flaw
Gambio GX before 4.0.1.0 allows XSS in admin/couponadmin.php...
Cross site request forgery (csrf)
Gambio GX before 4.0.1.0 allows admin/admin.php CSRF...
Sql injection
Gambio GX before 4.0.1.0 allows SQL Injection in admin/gvmail.php...
CVE-2020-10982
Gambio GX before 4.0.1.0 allows SQL Injection in admin/gvmail.php...
CVE-2020-10982
CVE-2020-10982 affects Gambio GX compromised versions prior to 4.0.1.0, where the admin/gv_mail.php endpoint is vulnerable to SQL Injection. The provided documents confirm the vulnerable component (admin/gv_mail.php) and the flaw type (SQL Injection) but do not disclose exploitation status, affec...
CVE-2020-10983
Gambio GX before 4.0.1.0 allows SQL Injection in admin/mobile.php...
CVE-2020-10984
Gambio GX before 4.0.1.0 allows admin/admin.php CSRF...
CVE-2020-10984
Gambio GX (before 4.0.1.0) contains a CSRF vulnerability in admin/admin.php. The CVE entry CVE-2020-10984 documents a cross-site request forgery flaw affecting the admin interface; no explicit remediation is provided in the connected sources. The public references confirm the affected product/ver...