Filtered by vendor Sistemagpweb Subscriptions
Filtered by product Gpweb Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2017-15877 1 Sistemagpweb 1 Gpweb 2024-11-21 N/A
Insecure Permissions vulnerability in db.php file in GPWeb 8.4.61 allows remote attackers to view the password and user database.
CVE-2017-15876 1 Sistemagpweb 1 Gpweb 2024-11-21 N/A
Unrestricted File Upload vulnerability in GPWeb 8.4.61 allows remote authenticated users to upload any type of file, including a PHP shell.
CVE-2017-15875 1 Sistemagpweb 1 Gpweb 2024-11-21 N/A
SQL injection vulnerability in Password Recovery in GPWeb 8.4.61 allows remote attackers to execute arbitrary SQL commands via the "checkemail" parameter.