Gleamtech: Security Vulnerabilities
The FileExplorer component in GleamTech FileUltimate 6.1.5.0 allows XSS via an SVG document.
CVSS Score
6.1
EPSS Score
0.002
Published
2020-06-24
GleamTech FileVista before 6.1 allows remote authenticated users to create arbitrary files and possibly execute arbitrary code via a crafted path in a zip archive, which is not properly handled during extraction.
CVSS Score
6.5
EPSS Score
0.017
Published
2014-12-02
GleamTech FileVista before 6.1 allows remote authenticated users to obtain sensitive information via a crafted path when saving a zip file, which reveals the installation path in an error message.
CVSS Score
4.0
EPSS Score
0.002
Published
2014-12-02