Published: 03/07/2012 Updated: 17/07/2012

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Gekko prior to 1.2.0 allows remote malicious users to obtain the installation path via a direct request to (1) admin/templates/babygekko/index.php or (2) templates/html5demo/index.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
babygekko baby gekko 1.0.0
babygekko baby gekko 0.99
babygekko baby gekko 0.98
babygekko baby gekko 0.91
babygekko baby gekko 1.1.1
babygekko baby gekko 1.0.1
babygekko baby gekko 0.90
babygekko baby gekko 1.1.4
babygekko baby gekko 1.1.3
babygekko baby gekko 1.1.2
babygekko baby gekko 1.1.0
babygekko baby gekko

Baby Gekko CMS v115c Multiple Stored Cross-Site Scripting Vulnerabilities Vendor: Baby Gekko, Inc Product web page: wwwbabygekkocom Affected version: 115c Summary: BabyGekko strives to deliver high quality websites and other web content fast and easy for all end users It is a lightweight, extensible content management system platf ...

CWE-200 http://www.babygekko.com/site/news/general/baby-gekko-v1-2-0-released-with-3rd-party-independent-security-testing-performed-by-zero-science-lab.html http://www.exploit-db.com/exploits/18827 http://www.zeroscience.mk/en/vulnerabilities/ZSL-2012-5086.php https://nvd.nist.gov https://www.exploit-db.com/exploits/18827/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2012-3838

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect