Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
interspire vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-4957
Directory traversal vulnerability in loadpanel.php in Interspire ActiveKB allows remote malicious users to read arbitrary files and possibly have unspecified other impact via directory traversal sequences in the Panel parameter.
Interspire Activekb
1 EDB exploit
NA
CVE-2009-4192
Directory traversal vulnerability in dialog/file_manager.php in Interspire Knowledge Manager 5 allows remote malicious users to read arbitrary files via a .. (dot dot) in the p parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from th...
Interspire Knowledge Manager 5
1 EDB exploit
NA
CVE-2009-0412
The ProcessLogin function in class.auth.php in Interspire Shopping Cart (ISC) 4.0.1 Ultimate edition allows remote malicious users to bypass authentication and obtain administrative access by reusing the RememberToken cookie after a failed admin login attempt.
Interspire Shopping Cart 4.0.1
NA
CVE-2008-2338
Interspire ActiveKB 1.5 and previous versions allows remote malicious users to gain privileges by setting the auth cookie to true when accessing unspecified scripts in /admin.
Interspire Activekb
1 EDB exploit
NA
CVE-2008-1076
Cross-site scripting (XSS) vulnerability in search.php in Interspire Shopping Cart 1.x allows remote malicious users to inject arbitrary web script or HTML via the search_query parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from th...
Interspire Shopping Cart 1
NA
CVE-2007-5426
Multiple cross-site scripting (XSS) vulnerabilities in ActiveKB NX 2.5.4 allow remote malicious users to inject arbitrary web script or HTML via the page parameter to the default URI for some directories, as demonstrated by (1) ActiveKB/ and (2) default/categories/ActiveKB/.
Interspire Activekb Nx 2.5.4
1 EDB exploit
NA
CVE-2007-5425
SQL injection vulnerability in admin/index.php in Interspire ActiveKB 1.5 allows remote malicious users to execute arbitrary SQL commands via the questId parameter in a hideQuestion ToDo action. NOTE: the catId vector is already covered by CVE-2007-5131.
Interspire Activekb 1.5
NA
CVE-2007-5131
SQL injection vulnerability in index.php in Interspire ActiveKB NX 2.x allows remote malicious users to execute arbitrary SQL commands via the catId parameter in a browse action. NOTE: it was separately reported that ActiveKB 1.5 is also affected.
Interspire Activekb Nx 2.6
Interspire Activekb Nx 2
1 EDB exploit
NA
CVE-2007-4147
Multiple unspecified vulnerabilities in Interspire ArticleLive NX prior to 1.7.1.2 have unknown impact and attack vectors, possibly related to (1) AL_SANITIZE and (2) "Calling the constructor to make sure things are checked, safe mode, etc."
Interspire Articlelive Nx 0.4
Interspire Articlelive Nx 0.3
NA
CVE-2007-1060
Multiple PHP remote file inclusion vulnerabilities in Interspire SendStudio 2004.14 and previous versions, when register_globals and allow_fopenurl are enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the ROOTDIR parameter to (1) createemails.inc.p...
Interspire Sendstudio
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »