CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cross-site scripting XSS vulnerability in futomi CGI Cafe Access Analyzer CGI Professional, and Standard 4.0.2 and earlier, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6AI score0.00285EPSS

Exploits0References1

Japan Vulnerability Notes•added 2018/02/08 12:0 a.m.•30 views

JVN#15462187: MP Form Mail CGI eCommerce Edition vulnerable to OS command injection

MP Form Mail CGI eCommerce Edition provided by futomi Co., Ltd. is a CGI used to send mail from a web form. MP Form Mail CGI eCommerce Edition contains an OS command injection vulnerability CWE-78. Impact A remote attacker may execute an arbitrary OS command. Solution Update the Software Update t...

10CVSS9.8AI score0.02108EPSS

Exploits0

NVD•added 2016/06/05 1:59 a.m.•12 views

CVE-2016-1212

Directory traversal vulnerability in futomi MP Form Mail CGI Professional Edition 3.2.3 and earlier allows remote authenticated administrators to read arbitrary files via unspecified vectors...

4CVSS3.7AI score0.00102EPSS

Exploits0References3

CVE•added 2016/06/05 1:0 a.m.•39 views

CVE-2016-1212

CVE-2016-1212 affects Futomi MP Form Mail CGI Professional Edition up to version 3.2.3, exposing a directory traversal vulnerability (CWE-22). The flaw allows remote authenticated administrators to read arbitrary files on the server via unspecified vectors. Public records from NVD/JVN describe th...

4CVSS3.8AI score0.00102EPSS

Exploits0References3Affected Software1

Cvelist•added 2016/06/05 1:0 a.m.•14 views

CVE-2016-1212

Directory traversal vulnerability in futomi MP Form Mail CGI Professional Edition 3.2.3 and earlier allows remote authenticated administrators to read arbitrary files via unspecified vectors...

3.5AI score0.00102EPSS

Exploits0References3

CNVD•added 2016/05/23 12:0 a.m.•1 views

Futomi MP Form Mail CGI Professional Edition Directory Traversal Vulnerability

Futomi MP Form Mail CGI Professional Edition is a suite of software that sends mail in the form of CGI to a specified E-mail from Futomi, Japan. A directory traversal vulnerability exists in Futomi MP Form Mail CGI Professional Edition 3.2.3 and earlier versions. An attacker can exploit this...

4CVSS6.8AI score0.00102EPSS

Exploits0References1

CNVD•added 2015/03/23 12:0 a.m.•3 views

Futomi CGI Cafe MP Form Mail CGI eCommerce Arbitrary Code Execution Vulnerability

Futomi CGI Cafe MP Form Mail CGI eCommerce on Windows is a Windows-based CGI for sending emails from Web forms by Futomi Japan. A security vulnerability exists in Futomi CGI Cafe MP Form Mail CGI eCommerce on Windows platform prior to version 2.0.12. A remote attacker can exploit the vulnerabilit...

7.5CVSS7.4AI score0.00555EPSS

Exploits0References1

NVD•added 2015/03/21 1:59 a.m.•11 views

CVE-2015-0898

futomi CGI Cafe MP Form Mail CGI eCommerce before 2.0.12 on Windows allows remote attackers to execute arbitrary Perl code via unspecified vectors...

7.5CVSS7.6AI score0.00555EPSS

Exploits0References4

Cvelist•added 2015/03/21 1:0 a.m.•13 views

CVE-2015-0898

futomi CGI Cafe MP Form Mail CGI eCommerce before 2.0.12 on Windows allows remote attackers to execute arbitrary Perl code via unspecified vectors...

7.6AI score0.00555EPSS

Exploits0References4

CVE•added 2015/03/21 1:0 a.m.•42 views

CVE-2015-0898

The CVE concerns Futomi CGI Cafe MP Form Mail CGI eCommerce edition running on Windows. The vulnerability allows a remote attacker to execute arbitrary Perl code due to an injection flaw in the CGI eCommerce implementation, affecting version 2.0.11 and earlier. The impact is remote code execution...

7.5CVSS7.8AI score0.00555EPSS

Exploits0References4Affected Software1

Japan Vulnerability Notes•added 2015/03/20 12:0 a.m.•41 views

JVN#39175666: MP Form Mail CGI eCommerce edition vulnerable to code injection

MP Form Mail CGI eCommerce edition provided by futomi Co., Ltd. is a CGI used to send mail from a web form. MP Form Mail CGI eCommerce edition contains a code injection vulnerability. Impact Arbitrary Perl code may be executed on the server where it resides. Solution Update the software Update to...

7.5CVSS6.7AI score0.00555EPSS

Exploits0

NVD•added 2010/09/13 9:0 p.m.•10 views

CVE-2010-2366

4.3CVSS5.7AI score0.00285EPSS

Exploits0References4

Cvelist•added 2010/09/13 8:0 p.m.•12 views

CVE-2010-2366

5.7AI score0.00285EPSS

Exploits0References4

Rows per page