VYPR

Gravity Gtd

by Gravity Gtd

CVEs (7)

  • CVE-2021-32284HigSep 20, 2021
    risk 0.51cvss 7.8epss 0.01

    An issue was discovered in gravity through 0.8.1. A NULL pointer dereference exists in the function ircode_register_pop_context_protect() located in gravity_ircode.c. It allows an attacker to cause Denial of Service.

  • CVE-2021-32281HigSep 20, 2021
    risk 0.51cvss 7.8epss 0.01

    An issue was discovered in gravity through 0.8.1. A heap-buffer-overflow exists in the function gnode_function_add_upvalue located in gravity_ast.c. It allows an attacker to cause code Execution.

  • CVE-2021-32285MedSep 20, 2021
    risk 0.36cvss 5.5epss 0.01

    An issue was discovered in gravity through 0.8.1. A NULL pointer dereference exists in the function list_iterator_next() located in gravity_core.c. It allows an attacker to cause Denial of Service.

  • CVE-2021-32283MedSep 20, 2021
    risk 0.36cvss 5.5epss 0.01

    An issue was discovered in gravity through 0.8.1. A NULL pointer dereference exists in the function gravity_string_to_value() located in gravity_value.c. It allows an attacker to cause Denial of Service.

  • CVE-2021-32282MedSep 20, 2021
    risk 0.36cvss 5.5epss 0.01

    An issue was discovered in gravity through 0.8.1. A NULL pointer dereference exists in the function ircode_add_check() located in gravity_ircode.c. It allows an attacker to cause Denial of Service.

  • CVE-2008-5963Jan 23, 2009
    risk 0.03cvss epss 0.03

    Eval injection vulnerability in library/setup/rpc.php in Gravity Getting Things Done (GTD) 0.4.5 and earlier allows remote attackers to execute arbitrary PHP code via the objectname parameter.

  • CVE-2008-5962Jan 23, 2009
    risk 0.03cvss epss 0.02

    Directory traversal vulnerability in library/setup/rpc.php in Gravity Getting Things Done (GTD) 0.4.5 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the objectname parameter.