Vulnerabilities > ENS > Webgalamb > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-21 | CVE-2018-19513 | Information Exposure Through Log Files vulnerability in ENS Webgalamb 6.0/7.0 In Webgalamb through 7.0, log files are exposed to the internet with predictable files/logs/sql_error_log/YYYY-MM-DD-sql_error_log.log filenames. | 7.5 |
| 2019-03-21 | CVE-2018-19512 | Path Traversal vulnerability in ENS Webgalamb 6.0/7.0 In Webgalamb through 7.0, a system/ajax.php "wgmfile restore" directory traversal vulnerability could lead to arbitrary code execution by authenticated administrator users, because PHP files are restored under the document root directory. | 7.2 |