Skip to main content

Gambio Gx

4 CVEs product

Monthly

CVE-2020-10985 MEDIUM POC This Month

Gambio GX before 4.0.1.0 allows XSS in admin/coupon_admin.php. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Gambio Gx
NVD
CVSS 3.1
4.8
EPSS
0.6%
CVE-2020-10984 HIGH POC This Week

Gambio GX before 4.0.1.0 allows admin/admin.php CSRF. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF PHP Gambio Gx
NVD
CVSS 3.1
8.8
EPSS
0.7%
CVE-2020-10983 MEDIUM POC This Month

Gambio GX before 4.0.1.0 allows SQL Injection in admin/mobile.php. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Gambio Gx
NVD
CVSS 3.1
4.9
EPSS
1.4%
CVE-2020-10982 MEDIUM POC This Month

Gambio GX before 4.0.1.0 allows SQL Injection in admin/gv_mail.php. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Gambio Gx
NVD
CVSS 3.1
4.9
EPSS
1.4%
EPSS 1% CVSS 4.8
MEDIUM POC This Month

Gambio GX before 4.0.1.0 allows XSS in admin/coupon_admin.php. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Gambio Gx
NVD
EPSS 1% CVSS 8.8
HIGH POC This Week

Gambio GX before 4.0.1.0 allows admin/admin.php CSRF. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF PHP Gambio Gx
NVD
EPSS 1% CVSS 4.9
MEDIUM POC This Month

Gambio GX before 4.0.1.0 allows SQL Injection in admin/mobile.php. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Gambio Gx
NVD
EPSS 1% CVSS 4.9
MEDIUM POC This Month

Gambio GX before 4.0.1.0 allows SQL Injection in admin/gv_mail.php. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Gambio Gx
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy