Vulnerabilities (CVE)

Filtered by vendor Futomi Subscribe
Total 8 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-0514 1 Futomi 1 Mp Form Mail Cgi 2024-11-21 10.0 HIGH 9.8 CRITICAL
MP Form Mail CGI eCommerce Edition Ver 2.0.13 and earlier allows remote attackers to execute arbitrary OS commands via unspecified vectors.
CVE-2016-1212 1 Futomi 1 Mp Form Mail Cgi 2024-11-21 4.0 MEDIUM 2.7 LOW
Directory traversal vulnerability in futomi MP Form Mail CGI Professional Edition 3.2.3 and earlier allows remote authenticated administrators to read arbitrary files via unspecified vectors.
CVE-2015-0898 1 Futomi 1 Mp Form Mail Cgi 2024-11-21 7.5 HIGH N/A
futomi CGI Cafe MP Form Mail CGI eCommerce before 2.0.12 on Windows allows remote attackers to execute arbitrary Perl code via unspecified vectors.
CVE-2010-2366 1 Futomi 1 Access Analyzer Cgi 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in futomi CGI Cafe Access Analyzer CGI Professional, and Standard 4.0.2 and earlier, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2009-1206 1 Futomi 1 Cgi Cafe Access Analyzer Cgi 2024-11-21 7.5 HIGH N/A
Unspecified vulnerability in futomi's CGI Cafe Access Analyzer CGI Professional Version 4.11.5 and earlier allows remote attackers to gain administrative privileges via unknown vectors.
CVE-2009-0971 1 Futomi 1 Access Analyzer Cgi 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in futomi's CGI Cafe Access Analyzer CGI Standard Version 3.8.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
CVE-2009-0962 1 Futomi 1 Mp Form Mail Cgi 2024-11-21 7.5 HIGH N/A
Unspecified vulnerability in Futomi's CGI Cafe MP Form Mail CGI eCommerce 1.3.0 and earlier, and CGI Professional 3.2.2 and earlier, allows remote attackers to gain administrative privileges via unknown attack vectors.
CVE-2008-5809 1 Futomi 1 Access Analyzer Cgi 2024-11-21 5.8 MEDIUM N/A
futomi CGI Cafe Access Analyzer CGI Standard 4.0.1 and earlier and Access Analyzer CGI Professional 4.11.3 and earlier use a predictable session id, which makes it easier for remote attackers to hijack sessions, and obtain sensitive information about analysis results, via a modified id.