9 matches found
CVE-2012-5699
BabyGekko before 1.2.4 allows PHP file inclusion...
CVE-2012-5699
CVE-2012-5699 affects BabyGekko prior to 1.2.4, with multiple vulnerabilities including PHP File Inclusion (LFI via index.php, app parameter), SQL Injection (CSRF-enabled in admin/index.php with app=users or similar), and XSS (in admin/index.php and templates). Root cause: insufficient input vali...
BabyGekko 1.2.2e Multiple Vulnerabilities
No description provided by source. Advisory ID: HTB23122 Product: BabyGekko Vendor: babygekko.com Vulnerable Versions: 1.2.2e and probably prior Tested Version: 1.2.2e Vendor Notification: October 24, 2012 Vendor Patch: November 4, 2012 Public Disclosure: November 14, 2012 Vulnerability Type: SQL...
Multiple vulnerabilities in BabyGekko
Advisory ID: HTB23122 Product: BabyGekko Vendor: babygekko.com Vulnerable Versions: 1.2.2e and probably prior Tested Version: 1.2.2e Vendor Notification: October 24, 2012 Vendor Patch: November 4, 2012 Public Disclosure: November 14, 2012 Vulnerability Type: SQL Injection CWE-89, PHP File Inclusi...
CVE-2012-5699
creationtimestamp| type| source ---|---|--- 2012-11-15 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/22741...
BabyGekko 1.2.2e XSS / LFI / SQL Injection
Advisory ID: HTB23122 Product: BabyGekko Vendor: babygekko.com Vulnerable Versions: 1.2.2e and probably prior Tested Version: 1.2.2e Vendor Notification: October 24, 2012 Vendor Patch: November 4, 2012 Public Disclosure: November 14, 2012 Vulnerability Type: SQL Injection CWE-89, PHP File Inclusi...
BabyGekko 1.2.2e - Multiple Vulnerabilities
BabyGekko 1.2.2e - Multiple Vulnerabilities Advisory ID: HTB23122 Product: BabyGekko Vendor: babygekko.com Vulnerable Versions: 1.2.2e and probably prior Tested Version: 1.2.2e Vendor Notification: October 24, 2012 Vendor Patch: November 4, 2012 Public Disclosure: November 14, 2012 Vulnerability...
BabyGekko 1.2.2e XSS / LFI / SQL Injection Vulnerabilities
BabyGekko version 1.2.2e suffers from cross site scripting, local file inclusion, and remote SQL injection vulnerabilities. Product: BabyGekko 1.2.2e Vendor: babygekko.com Vulnerable Versions: 1.2.2e and probably prior Tested Version: 1.2.2e Vendor Notification: October 24, 2012 Vendor Patch:...
BabyGekko 1.2.2e - Multiple Vulnerabilities
Advisory ID: HTB23122 Product: BabyGekko Vendor: babygekko.com Vulnerable Versions: 1.2.2e and probably prior Tested Version: 1.2.2e Vendor Notification: October 24, 2012 Vendor Patch: November 4, 2012 Public Disclosure: November 14, 2012 Vulnerability Type: SQL Injection CWE-89, PHP File Inclusi...