Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
interspire vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-4024
Cross-site scripting (XSS) vulnerability in Interspire FastFind 2004 and 2005 allows remote malicious users to inject arbitrary web script or HTML via the query parameter.
Interspire Fastfind 2005
Interspire Fastfind 2004
8.8
CVSSv3
CVE-2018-19550
Interspire Email Marketer up to and including 6.1.6 allows arbitrary file upload via a surveys_submit.php "create survey and submit survey" operation, which can cause a .php file to be accessible under a admin/temp/surveys/ URI.
Interspire Email Marketer
Interspire Email Marketer 6.1.8
1 EDB exploit
8.8
CVSSv3
CVE-2018-19551
Interspire Email Marketer up to and including 6.1.6 has SQL Injection via a checkduplicatetags tagname request to Dynamiccontenttags.php.
Interspire Email Marketer
Interspire Email Marketer 6.1.8
8.8
CVSSv3
CVE-2018-19552
Interspire Email Marketer up to and including 6.1.6 has SQL Injection via a deleteblock blockid[] request to Dynamiccontenttags.php.
Interspire Email Marketer
Interspire Email Marketer 6.1.8
8.8
CVSSv3
CVE-2018-19553
Interspire Email Marketer up to and including 6.1.6 has SQL Injection via an updateblock sortorder request to Dynamiccontenttags.php
Interspire Email Marketer
Interspire Email Marketer 6.1.8
6.5
CVSSv3
CVE-2018-19651
admin/functions/remote.php in Interspire Email Marketer up to and including 6.1.6 has Server Side Request Forgery (SSRF) via a what=importurl&url= request with an http or https URL. This also allows reading local files with a file: URL.
Interspire Email Marketer
Interspire Email Marketer 6.1.8
NA
CVE-2007-4147
Multiple unspecified vulnerabilities in Interspire ArticleLive NX prior to 1.7.1.2 have unknown impact and attack vectors, possibly related to (1) AL_SANITIZE and (2) "Calling the constructor to make sure things are checked, safe mode, etc."
Interspire Articlelive Nx 0.4
Interspire Articlelive Nx 0.3
NA
CVE-2007-5131
SQL injection vulnerability in index.php in Interspire ActiveKB NX 2.x allows remote malicious users to execute arbitrary SQL commands via the catId parameter in a browse action. NOTE: it was separately reported that ActiveKB 1.5 is also affected.
Interspire Activekb Nx 2.6
Interspire Activekb Nx 2
1 EDB exploit
NA
CVE-2007-1060
Multiple PHP remote file inclusion vulnerabilities in Interspire SendStudio 2004.14 and previous versions, when register_globals and allow_fopenurl are enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the ROOTDIR parameter to (1) createemails.inc.p...
Interspire Sendstudio
1 EDB exploit
NA
CVE-2009-4957
Directory traversal vulnerability in loadpanel.php in Interspire ActiveKB allows remote malicious users to read arbitrary files and possibly have unspecified other impact via directory traversal sequences in the Panel parameter.
Interspire Activekb
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »