Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
activekb vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-5131
SQL injection vulnerability in index.php in Interspire ActiveKB NX 2.x allows remote malicious users to execute arbitrary SQL commands via the catId parameter in a browse action. NOTE: it was separately reported that ActiveKB 1.5 is also affected.
Interspire Activekb Nx 2.6
Interspire Activekb Nx 2
1 EDB exploit
7.5
CVSSv2
CVE-2008-2338
Interspire ActiveKB 1.5 and previous versions allows remote malicious users to gain privileges by setting the auth cookie to true when accessing unspecified scripts in /admin.
Interspire Activekb
1 EDB exploit
7.5
CVSSv2
CVE-2009-4957
Directory traversal vulnerability in loadpanel.php in Interspire ActiveKB allows remote malicious users to read arbitrary files and possibly have unspecified other impact via directory traversal sequences in the Panel parameter.
Interspire Activekb
1 EDB exploit
6.4
CVSSv2
CVE-2007-5425
SQL injection vulnerability in admin/index.php in Interspire ActiveKB 1.5 allows remote malicious users to execute arbitrary SQL commands via the questId parameter in a hideQuestion ToDo action. NOTE: the catId vector is already covered by CVE-2007-5131.
Interspire Activekb 1.5
4.3
CVSSv2
CVE-2007-5426
Multiple cross-site scripting (XSS) vulnerabilities in ActiveKB NX 2.5.4 allow remote malicious users to inject arbitrary web script or HTML via the page parameter to the default URI for some directories, as demonstrated by (1) ActiveKB/ and (2) default/categories/ActiveKB/.
Interspire Activekb Nx 2.5.4
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started