24 matches found
EUVD-2025-210231
Unauthenticated Local File Inclusion in Gat = 1.16 versions...
CVE-2025-69145
Unauthenticated Local File Inclusion in Gat = 1.16 versions...
CVE-2025-69145
Technical details for CVE-2025-69145 (Gat theme LFI) are not publicly provided in the connected documents. No vendor/version specifics or fixes are documented here. Monitor for updates.
CVE-2025-69145 WordPress Gat theme <= 1.16 - Local File Inclusion vulnerability
Unauthenticated Local File Inclusion in Gat = 1.16 versions...
WordPress Gat theme <= 1.16 - Local File Inclusion vulnerability
Local File Inclusion vulnerability discovered by Bonds in WordPress Theme Gat versions = 1.16...
CVE-2019-12163
GAT-Ship Web Module through 1.30 allows remote attackers to obtain potentially sensitive information via in a ws/gatshipWs.asmx/SqlVersion request...
EUVD-2019-3812
Malware in sbrugna...
EUVD-2019-2736
Malware in sbrugna...
NTLM Relay Gat - Powerful Tool Designed To Automate The Exploitation Of NTLM Relays
NTLM Relay Gat is a powerful tool designed to automate the exploitation of NTLM relays using ntlmrelayx.py from the Impacket tool suite. By leveraging the capabilities of ntlmrelayx.py, NTLM Relay Gat streamlines the process of exploiting NTLM relay vulnerabilities, offering a range of...
gat-sarl.com Cross Site Scripting vulnerability
Security Researcher g0bl1nsec Helped patch 3630 vulnerabilities Received 4 Coordinated Disclosure badges Received 3 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting gat-sarl.com website and its users. Following coordinated...
GAT-Ship Web Module 1.30 Information Disclosure Vulnerability
Exploit for multiple platform in category web applications GAT-Ship Web Module 1.30 - Unauthenticated Information Disclosure Vulnerability It is possible in versions 1.30 and below for unauthenticated attackers to query the GAT-Ship Web Module for system information via a crafted request: PoC:...
CVE-2019-12163
GAT-Ship Web Module through 1.30 allows remote attackers to obtain potentially sensitive information via in a ws/gatshipWs.asmx/SqlVersion request...
Cross site request forgery (csrf)
GAT-Ship Web Module through 1.30 allows remote attackers to obtain potentially sensitive information via in a ws/gatshipWs.asmx/SqlVersion request...
CVE-2019-12163
GAT-Ship Web Module through 1.30 allows remote attackers to obtain potentially sensitive information via in a ws/gatshipWs.asmx/SqlVersion request...
CVE-2019-12163
GAT-Ship Web Module through 1.30 allows remote attackers to obtain potentially sensitive information via in a ws/gatshipWs.asmx/SqlVersion request...
CVE-2019-12163
GAT-Ship Web Module prior to 1.31 is vulnerable to information disclosure via the ws/gatshipWs.asmx/SqlVersion endpoint. The root cause is exposure of potentially sensitive data through that API call. Affected versions: earlier than 1.31. Remediation: upgrade to 1.31 or later; as a temporary cont...
PT-2019-12672 · Gat · Gat-Ship Web Module
Name of the Vulnerable Software and Affected Versions: GAT-Ship Web Module versions prior to 1.31 Description: The issue allows remote attackers to obtain potentially sensitive information. This is achieved via a request to the "ws/gatshipWs.asmx/SqlVersion" API endpoint. Recommendations: For...
GAT-Ship Web Module 1.30 Information Disclosure
GAT-Ship Web Module 1.30 - Unauthenticated Information Disclosure Vulnerability It is possible in versions 1.30 and below for unauthenticated attackers to query the GAT-Ship Web Module for system information via a crafted request: PoC:...
GAT-Ship Web Module Unrestricted File Upload Vulnerability
Exploit for asp platform in category web applications GAT-Ship Web Module before the current version 1.40 suffers from a vulnerability allowing authenticated attackers to upload any file type to the server via the "Documents" area. This vulnerability is related to "uploadDocFile.aspx" Fix: Upgrad...
CVE-2019-11028
GAT-Ship Web Module before 1.40 suffers from a vulnerability allowing authenticated attackers to upload any file type to the server via the "Documents" area. This vulnerability is related to "uploadDocFile.aspx"...