Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
idevspot isupport 1.8 vulnerabilities and exploits
(subscribe to this query)
685
VMScore
CVE-2012-5326
Cross-site request forgery (CSRF) vulnerability in admin/function.php in IDevSpot iSupport 1.x allows remote malicious users to hijack the authentication of administrators for requests that add administrator accounts via an administrators action.
Idevspot Isupport 1.0
Idevspot Isupport 1.02
Idevspot Isupport 1.8
Idevspot Isupport 1.06
1 EDB exploit
445
VMScore
CVE-2009-4433
Multiple cross-site scripting (XSS) vulnerabilities in IDevSpot iSupport 1.8 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (a) 5 or (b) 9 field in a post action to ticket_function.php, reachable through ticket_submit.php and ind...
Idevspot Isupport
Idevspot Isupport 1.02
Idevspot Isupport 1.06
3 EDB exploits
505
VMScore
CVE-2009-4434
Directory traversal vulnerability in index.php in IDevSpot iSupport 1.8 and previous versions allows remote malicious users to read arbitrary files via a .. (dot dot) in the include_file parameter.
Idevspot Isupport
Idevspot Isupport 1.02
Idevspot Isupport 1.06
1 EDB exploit
445
VMScore
CVE-2006-4884
Multiple cross-site scripting (XSS) vulnerabilities in IDevSpot iSupport 1.8 allow remote malicious users to inject arbitrary web script or HTML via (1) the suser parameter in support/rightbar.php, (2) the ticket_id parameter in support/open_tickets.php, and (3) the cons_page_tit...
Idevspot Isupport 1.8
3 EDB exploits
685
VMScore
CVE-2007-6539
PHP local file inclusion vulnerability in index.php in IDevspot iSupport 1.8 allows remote malicious users to include local files via the include_file parameter.
Idevspot Isupport 1.8
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started