Vulnerabilities > GWM

DATE	CVE	VULNERABILITY TITLE	RISK
2009-02-26	CVE-2008-6300	Improper Authentication vulnerability in GWM Galatolo Webmanager 1.3A Galatolo WebManager 1.3a allows remote attackers to bypass authentication and gain administrative access by setting the (1) gwm_user and (2) gwm_pass cookies to admin. network low complexity gwm CWE-287	7.5
2009-02-23	CVE-2008-6249	SQL Injection vulnerability in GWM Galatolo Webmanager SQL injection vulnerability in plugins/users/index.php in Galatolo WebManager 1.3a and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. network low complexity gwm CWE-89	7.5
2009-02-10	CVE-2008-6108	Cross-Site Scripting vulnerability in GWM Galatolo Webmanager 1.0 Cross-site scripting (XSS) vulnerability in result.php in Galatolo WebManager (GWM) 1.0 allows remote attackers to inject arbitrary web script or HTML via the key parameter. network gwm CWE-79	4.3
2008-06-13	CVE-2008-2700	SQL Injection vulnerability in GWM Galatolo Webmanager 1.0 SQL injection vulnerability in view.php in Galatolo WebManager 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. network low complexity gwm CWE-89	7.5
2008-06-13	CVE-2008-2699	Path Traversal vulnerability in GWM Galatolo Webmanager 1.0 Multiple directory traversal vulnerabilities in Galatolo WebManager (GWM) 1.0 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in (1) the plugin parameter to admin/plugins.php or (2) the com parameter to index.php. network low complexity gwm CWE-22	7.5

Vulnerabilities > GWM {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"GWM"}]}

Vulnerabilities > GWM