VYPR

Greymatter

by Greymatter

CVEs (3)

  • CVE-2006-1485Mar 29, 2006
    risk 0.00cvss epss 0.01

    gm-upload.cgi in Greymatter 1.3.1 allows remote authenticated users with upload privileges to execute arbitrary programs by uploading files to locations within the web root. NOTE: the provenance of this information is unknown; the details are obtained solely from third party…

  • CVE-2005-2816Sep 7, 2005
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in Greymatter allows remote attackers to inject arbitrary web script or HTML via a post comment, which is recorded in a log file but not properly handled when the administrator uses "View Control Panel Log" to read the log file.

  • CVE-2002-0324Jun 25, 2002
    risk 0.00cvss epss 0.03

    Greymatter 1.21c and earlier with the Bookmarklet feature enabled allows remote attackers to read a cleartext password and gain administrative privileges by guessing the name of a gmrightclick-*.reg file which contains the administrator name and password in cleartext, then…