Vulnerabilities > Gleeztech

DATE	CVE	VULNERABILITY TITLE	RISK
2018-09-07	CVE-2018-16704	Authorization Bypass Through User-Controlled Key vulnerability in Gleeztech Gleezcms 1.3.0 An issue was discovered in Gleez CMS v1.2.0. network low complexity gleeztech CWE-639	4.3
2018-09-07	CVE-2018-16703	Incorrect Permission Assignment for Critical Resource vulnerability in Gleeztech Gleez CMS 1.2.0 A vulnerability in the Gleez CMS 1.2.0 login page could allow an unauthenticated, remote attacker to perform multiple user enumerations, which can further help an attacker to perform login attempts in excess of the configured login attempt limit. network low complexity gleeztech CWE-732	5.3
2018-07-23	CVE-2018-1999021	Cross-site Scripting vulnerability in Gleeztech Gleezcms 1.3.0 Gleezcms Gleez Cms version 1.3.0 contains a Cross Site Scripting (XSS) vulnerability in Profile page that can result in Inject arbitrary web script or HTML via the profile page editor. network low complexity gleeztech CWE-79	5.4
2018-07-05	CVE-2018-13340	Cross-Site Request Forgery (CSRF) vulnerability in Gleeztech Gleez CMS 1.2.0 Gleez CMS 1.2.0 has CSRF, as demonstrated by a /page/add request. network low complexity gleeztech CWE-352	8.8

Vulnerabilities > Gleeztech {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Gleeztech"}]}