CVE-2012-5700

BabyGekko CMS (vulnerable before 1.2.2f) is affected by multiple vulnerabilities including SQL Injection, Local File Inclusion (LFI), and Cross‑Site Scripting (XSS). The XSS can be triggered via admin/index.php (id parameter) or blocks/loginbox/loginbox.template.php (username/password fields); LF...

BabyGekko 1.2.2e Multiple Vulnerabilities

No description provided by source. Advisory ID: HTB23122 Product: BabyGekko Vendor: babygekko.com Vulnerable Versions: 1.2.2e and probably prior Tested Version: 1.2.2e Vendor Notification: October 24, 2012 Vendor Patch: November 4, 2012 Public Disclosure: November 14, 2012 Vulnerability Type: SQL...

Multiple vulnerabilities in BabyGekko

Advisory ID: HTB23122 Product: BabyGekko Vendor: babygekko.com Vulnerable Versions: 1.2.2e and probably prior Tested Version: 1.2.2e Vendor Notification: October 24, 2012 Vendor Patch: November 4, 2012 Public Disclosure: November 14, 2012 Vulnerability Type: SQL Injection CWE-89, PHP File Inclusi...

BabyGekko 1.2.2e XSS / LFI / SQL Injection

Advisory ID: HTB23122 Product: BabyGekko Vendor: babygekko.com Vulnerable Versions: 1.2.2e and probably prior Tested Version: 1.2.2e Vendor Notification: October 24, 2012 Vendor Patch: November 4, 2012 Public Disclosure: November 14, 2012 Vulnerability Type: SQL Injection CWE-89, PHP File Inclusi...

BabyGekko 1.2.2e - Multiple Vulnerabilities

Advisory ID: HTB23122 Product: BabyGekko Vendor: babygekko.com Vulnerable Versions: 1.2.2e and probably prior Tested Version: 1.2.2e Vendor Notification: October 24, 2012 Vendor Patch: November 4, 2012 Public Disclosure: November 14, 2012 Vulnerability Type: SQL Injection CWE-89, PHP File Inclusi...

BabyGekko 1.2.2e XSS / LFI / SQL Injection Vulnerabilities

BabyGekko version 1.2.2e suffers from cross site scripting, local file inclusion, and remote SQL injection vulnerabilities. Product: BabyGekko 1.2.2e Vendor: babygekko.com Vulnerable Versions: 1.2.2e and probably prior Tested Version: 1.2.2e Vendor Notification: October 24, 2012 Vendor Patch:...