Gatship: >> Web Module >> 1.30 Security Vulnerabilities
GAT-Ship Web Module through 1.30 allows remote attackers to obtain potentially sensitive information via {} in a ws/gatshipWs.asmx/SqlVersion request.
CVSS Score
5.3
EPSS Score
0.012
Published
2019-05-17
GAT-Ship Web Module before 1.40 suffers from a vulnerability allowing authenticated attackers to upload any file type to the server via the "Documents" area. This vulnerability is related to "uploadDocFile.aspx".
CVSS Score
8.8
EPSS Score
0.008
Published
2019-04-09