VYPR
Vendor

Cgi Rescue

Products
11
CVEs
14
Across products
17
Status
Private

Products

11

Recent CVEs

14
  • CVE-2015-2962Jun 13, 2015
    risk 0.00cvss epss 0.03

    CGI RESCUE BloBee 1.20 and earlier allows remote attackers to write to arbitrary files, and consequently execute arbitrary code, via unspecified vectors.

  • CVE-2014-8318Oct 17, 2014
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in the Webform module 6.x-3.x before 6.x-3.20, 7.x-3.x before 7.x-3.20, and 7.x-4.x before 7.x-4.0-beta2 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via a field label title,…

  • CVE-2009-1790May 26, 2009
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in CGI RESCUE Trees before 2.11 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.

  • CVE-2009-1591May 8, 2009
    risk 0.00cvss epss 0.01

    CRLF injection vulnerability in CGI RESCUE Web Mailer before 1.04 allows remote attackers to inject arbitrary HTTP headers, and conduct cross-site scripting (XSS) or HTTP response splitting attacks, via CRLF sequences in an unspecified web form.

  • CVE-2009-1590May 8, 2009
    risk 0.00cvss epss 0.01

    Unspecified vulnerability in CGI RESCUE FORM2MAIL before 1.42 allows remote attackers to send email to arbitrary recipients via a web form.

  • CVE-2009-1589May 8, 2009
    risk 0.00cvss epss 0.01

    Unspecified vulnerability in CGI RESCUE MiniBBS22 before 1.01 allows remote attackers to send email to arbitrary recipients via unknown vectors.

  • CVE-2009-1588May 8, 2009
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in CGI RESCUE MiniBBS 8t before 8.95t, 8 before 8.95, 9 before 9.08, and 10 before 10.32 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

  • CVE-2008-5723Dec 26, 2008
    risk 0.00cvss epss 0.02

    Directory traversal vulnerability in CGI RESCUE KanniBBS2000 (aka KanniBBS2000i, MiniBBS2000, and MiniBBS2000i) before 1.03 allows remote attackers to read arbitrary files via unspecified vectors.

  • CVE-2007-4655Sep 4, 2007
    risk 0.00cvss epss 0.02

    Multiple directory traversal vulnerabilities in CGI RESCUE Shopping Basket Professional 7.51 and earlier allow remote attackers to list arbitrary directories, and possibly read arbitrary files, via directory traversal sequences in unspecified parameters to (1) list.cgi or (2)…

  • CVE-2007-0565Jan 30, 2007
    risk 0.00cvss epss 0.01

    CGI-Rescue Shopping Basket Professional 7.50 and earlier allows remote attackers to inject arbitrary operating system commands via unspecified vectors.

  • CVE-2007-0547Jan 29, 2007
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in CGI-RESCUE WebFORM 4.3 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

  • CVE-2006-4344Aug 24, 2006
    risk 0.00cvss epss 0.01

    CRLF injection vulnerability in CGI-Rescue Mail F/W System (formd) before 8.3 allows remote attackers to spoof e-mails and inject e-mail headers via unspecified vectors in (1) mail.cgi and (2) query.cgi.

  • CVE-2006-2944Jun 12, 2006
    risk 0.00cvss epss 0.01

    Unspecified vulnerability in CGI-RESCUE FORM2MAIL 1.21 and earlier allows remote attackers to inject email headers, which facilitates sending spam messages. NOTE: the details for this issue are obtained from third party information.

  • CVE-2006-2943Jun 12, 2006
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in CGI-RESCUE WebFORM 4.1 and earlier allows remote attackers to inject email headers, which facilitates sending spam messages. NOTE: the details for this issue are obtained from third party information.