Futomi : Security Vulnerabilities, CVEs,

CVE-2018-0514

MP Form Mail CGI eCommerce Edition Ver 2.0.13 and earlier allows remote attackers to execute arbitrary OS commands via unspecified vectors.
Max CVSS
10.0
EPSS Score
0.51%
Published
2018-02-08
Updated
2018-03-10

CVE-2016-1212

Directory traversal vulnerability in futomi MP Form Mail CGI Professional Edition 3.2.3 and earlier allows remote authenticated administrators to read arbitrary files via unspecified vectors.
Max CVSS
4.0
EPSS Score
0.16%
Published
2016-06-05
Updated
2016-06-06

CVE-2015-0898

futomi CGI Cafe MP Form Mail CGI eCommerce before 2.0.12 on Windows allows remote attackers to execute arbitrary Perl code via unspecified vectors.
Max CVSS
7.5
EPSS Score
0.65%
Published
2015-03-21
Updated
2015-03-27

CVE-2010-2366

Cross-site scripting (XSS) vulnerability in futomi CGI Cafe Access Analyzer CGI Professional, and Standard 4.0.2 and earlier, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
4.3
EPSS Score
0.14%
Published
2010-09-13
Updated
2010-09-14

CVE-2009-1206

Unspecified vulnerability in futomi's CGI Cafe Access Analyzer CGI Professional Version 4.11.5 and earlier allows remote attackers to gain administrative privileges via unknown vectors.
Max CVSS
7.5
EPSS Score
1.71%
Published
2009-04-01
Updated
2017-08-17

CVE-2009-0971

Cross-site scripting (XSS) vulnerability in futomi's CGI Cafe Access Analyzer CGI Standard Version 3.8.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
Max CVSS
4.3
EPSS Score
0.41%
Published
2009-03-19
Updated
2017-08-17

CVE-2009-0962

Unspecified vulnerability in Futomi's CGI Cafe MP Form Mail CGI eCommerce 1.3.0 and earlier, and CGI Professional 3.2.2 and earlier, allows remote attackers to gain administrative privileges via unknown attack vectors.
Max CVSS
7.5
EPSS Score
1.78%
Published
2009-03-19
Updated
2017-08-17

CVE-2008-5809

futomi CGI Cafe Access Analyzer CGI Standard 4.0.1 and earlier and Access Analyzer CGI Professional 4.11.3 and earlier use a predictable session id, which makes it easier for remote attackers to hijack sessions, and obtain sensitive information about analysis results, via a modified id.
Max CVSS
5.8
EPSS Score
0.32%
Published
2009-01-02
Updated
2009-02-26
8 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close