Iwork » Webglimpse : Security Vulnerabilities, CVEs,
Directory traversal vulnerability in wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the DOC parameter.
Max CVSS
5.0
EPSS Score
1.08%
Published
2012-03-19
Updated
2017-12-29
Cross-site scripting (XSS) vulnerability in wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to inject arbitrary web script or HTML via the DOC parameter.
Max CVSS
4.3
EPSS Score
0.16%
Published
2012-03-19
Updated
2017-08-29
wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to obtain the installation path via a crafted request.
Max CVSS
5.0
EPSS Score
0.96%
Published
2012-03-19
Updated
2017-12-29
3 vulnerabilities found