Ghlab

ghlab

3 CVEs • 1 product

Products (1)

Click to collapse

Toggle

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2007-5739 1Ghlab 1Korean Ghboard Apr 23, 2026 Oct 30, 2007 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Directory traversal vulnerability in component/flashupload/download.jsp in the FlashUpload component in Korean GHBoard allows remote attackers to read arbitrary files via a .. (dot dot) in the name parameter.
CVE-2007-5738 1Ghlab 1Korean Ghboard Apr 23, 2026 Oct 30, 2007 N/A· v4 N/A· v3 6.8 MEDIUM· v2 The FlashUpload component in Korean GHBoard uses a client-side protection mechanism to prevent uploading of dangerous file extensions, which allows remote attackers to bypass restrictions and upload arbitrary files via a...Show more The FlashUpload component in Korean GHBoard uses a client-side protection mechanism to prevent uploading of dangerous file extensions, which allows remote attackers to bypass restrictions and upload arbitrary files via a modified copy of component/flashupload/upload.html.Show less
CVE-2007-5737 1Ghlab 1Korean Ghboard Apr 23, 2026 Oct 30, 2007 N/A· v4 N/A· v3 7.5 HIGH· v2 Unrestricted file upload vulnerability in component/upload.jsp in Korean GHBoard allows remote attackers to upload arbitrary files via unspecified vectors, probably involving a direct request.