4mosan

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Gcb Doctor

gcb_doctor

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-44159 14mosan 1Gcb Doctor Nov 21, 2024 Dec 20, 2021 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 4MOSAn GCB Doctor’s file upload function has improper user privilege control. A remote attacker can upload arbitrary files including webshell files without authentication and execute arbitrary code in order to perform ar...Show more 4MOSAn GCB Doctor’s file upload function has improper user privilege control. A remote attacker can upload arbitrary files including webshell files without authentication and execute arbitrary code in order to perform arbitrary system operations or deny of service attack.Show less
CVE-2021-42338 14mosan 1Gcb Doctor Nov 21, 2024 Nov 19, 2021 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 4MOSAn GCB Doctor’s login page has improper validation of Cookie, which allows an unauthenticated remote attacker to bypass authentication by code injection in cookie, and arbitrarily manipulate the system or interrupt s...Show more 4MOSAn GCB Doctor’s login page has improper validation of Cookie, which allows an unauthenticated remote attacker to bypass authentication by code injection in cookie, and arbitrarily manipulate the system or interrupt services by upload and execution of arbitrary files.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2021-44159

14mosan

1Gcb Doctor

Nov 21, 2024

Dec 20, 2021

N/A· v4

9.8 CRITICAL· v3

10.0 HIGH· v2

4MOSAn GCB Doctor’s file upload function has improper user privilege control. A remote attacker can upload arbitrary files including webshell files without authentication and execute arbitrary code in order to perform ar...Show more

CVE-2021-42338