Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
activeweb vulnerabilities and exploits
(subscribe to this query)
405
VMScore
CVE-2007-3017
The WYSIWYG editor applet in activeWeb contentserver CMS prior to 5.6.2964 only filters malicious tags from articles sent to admin/applets/wysiwyg/rendereditor.asp, which allows remote authenticated users to inject arbitrary JavaScript via a request to admin/worklist/worklist_edi...
Activeweb Contentserver
1 EDB exploit
655
VMScore
CVE-2007-3013
SQL injection vulnerability in activeWeb contentserver prior to 5.6.2964 allows remote authenticated users with edit permission to execute arbitrary SQL commands via the id parameter to admin/picture/picture_real_edit.asp, and probably other unspecified vectors.
Activeweb Contentserver
1 EDB exploit
356
VMScore
CVE-2007-3018
activeWeb contentserver CMS prior to 5.6.2964 does not limit the file-creation ability of editors who have restricted accounts, which allows these editors to create files in arbitrary directories.
Activeweb Contentserver
440
VMScore
CVE-2007-3014
Multiple cross-site scripting (XSS) vulnerabilities in activeWeb contentserver prior to 5.6.2964 allow remote malicious users to inject arbitrary web script or HTML via the msg parameter to (1) errors/rights.asp or (2) errors/transaction.asp, or (3) the name of a MIME type (mimet...
Activeweb Contentserver
2 EDB exploits
685
VMScore
CVE-2011-0678
Unrestricted file upload vulnerability in the EasyEdit module in Lomtec ActiveWeb Professional 3.0 allows remote malicious users to execute arbitrary code by uploading an executable file via the UploadDirectory and Accepted Extensions fields in the getImagefile component of EasyE...
Lomtec Activeweb 3.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started