Greg Neustaetter Gcards — known CVE vulnerabilities
Every CVE whose affected-product data names Greg Neustaetter Gcards, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2005-3408 — CVSS 7.5 (high): SQL injection vulnerability in news.php in gCards version 1.43 allows remote attackers to execute arbitrary SQL commands via the limit…
CVE-2006-1347 — CVSS 7.5 (high): SQL injection vulnerability in loginfunction.php in Greg Neustaetter gCards 1.45 and earlier allows remote attackers to execute arbitrary…
CVE-2006-5255 — CVSS 7.5 (high): PHP remote file inclusion vulnerability in addnews.php in Greg Neustaetter gCards 1.13 allows remote attackers to execute arbitrary PHP…
CVE-2007-2971 — CVSS 7.5 (high): SQL injection vulnerability in getnewsitem.php in gCards 1.46 and earlier allows remote attackers to execute arbitrary SQL commands via the…
CVE-2006-1346 — CVSS 6.4 (medium): Directory traversal vulnerability in inc/setLang.php in Greg Neustaetter gCards 1.45 and earlier allows remote attackers to include and…
CVE-2006-1348 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in index.php in Greg Neustaetter gCards 1.45 and earlier allows remote attackers to inject…