Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arialsoftware campaign enterprise vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-3820
Multiple SQL injection vulnerabilities in Campaign11.exe in Arial Software Campaign Enterprise prior to 11.0.551 allow remote malicious users to execute arbitrary SQL commands via the (1) SerialNumber field to activate.asp or (2) UID field to User-Edit.asp.
Arialsoftware Campaign Enterprise
4.3
CVSSv3
CVE-2012-3821
A Security Bypass vulnerability exists in the activate.asp page in Arial Software Campaign Enterprise 11.0.551, which could let a remote malicious user modify the SerialNumber field.
Arialsoftware Campaign Enterprise
7.5
CVSSv3
CVE-2012-3822
Arial Campaign Enterprise prior to 11.0.551 has unauthorized access to the User-Edit.asp page, which allows remote malicious users to enumerate users' credentials.
Arialsoftware Campaign Enterprise
7.5
CVSSv3
CVE-2012-3823
Arial Campaign Enterprise prior to 11.0.551 stores passwords in clear text and these may be retrieved.
Arialsoftware Campaign Enterprise
7.5
CVSSv3
CVE-2012-3824
In Arial Campaign Enterprise prior to 11.0.551, multiple pages are accessible without authentication or authorization.
Arialsoftware Campaign Enterprise
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started