Doorgets: Security Vulnerabilities
doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/requests/user/modulecategoryRequest.php. A remote background administrator privilege user (or a user with permission to manage modulecategory) could exploit the vulnerability to obtain database sensitive information via modulecategory_add_titre.
CVSS Score
4.9
EPSS Score
0.003
Published
2019-04-30
doorGets 7.0 allows remote attackers to write to arbitrary files via directory traversal, as demonstrated by a dg-user/?controller=theme&action=edit&name=doorgets&file=../../1.txt%00 URI with content in the theme_content_nofi parameter.
CVSS Score
7.5
EPSS Score
0.003
Published
2018-12-11
dg-user/?controller=users&action=add in doorGets 7.0 has CSRF that results in adding an administrator account.
CVSS Score
8.8
EPSS Score
0.001
Published
2018-05-15
SQL injection vulnerability in dg-admin/index.php in doorGets CMS 5.2 and earlier allows remote authenticated administrators to execute arbitrary SQL commands via the _position_down_id parameter. NOTE: this can be leveraged using CSRF to allow remote attackers to execute arbitrary SQL commands.
CVSS Score
6.5
EPSS Score
0.025
Published
2014-02-11
Page 3