Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
interspire vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2005-4024
Cross-site scripting (XSS) vulnerability in Interspire FastFind 2004 and 2005 allows remote malicious users to inject arbitrary web script or HTML via the query parameter.
Interspire Fastfind 2005
Interspire Fastfind 2004
6.5
CVSSv2
CVE-2018-19550
Interspire Email Marketer up to and including 6.1.6 allows arbitrary file upload via a surveys_submit.php "create survey and submit survey" operation, which can cause a .php file to be accessible under a admin/temp/surveys/ URI.
Interspire Email Marketer
Interspire Email Marketer 6.1.8
1 EDB exploit
6.5
CVSSv2
CVE-2018-19551
Interspire Email Marketer up to and including 6.1.6 has SQL Injection via a checkduplicatetags tagname request to Dynamiccontenttags.php.
Interspire Email Marketer
Interspire Email Marketer 6.1.8
6.5
CVSSv2
CVE-2018-19552
Interspire Email Marketer up to and including 6.1.6 has SQL Injection via a deleteblock blockid[] request to Dynamiccontenttags.php.
Interspire Email Marketer
Interspire Email Marketer 6.1.8
6.5
CVSSv2
CVE-2018-19553
Interspire Email Marketer up to and including 6.1.6 has SQL Injection via an updateblock sortorder request to Dynamiccontenttags.php
Interspire Email Marketer
Interspire Email Marketer 6.1.8
4
CVSSv2
CVE-2018-19651
admin/functions/remote.php in Interspire Email Marketer up to and including 6.1.6 has Server Side Request Forgery (SSRF) via a what=importurl&url= request with an http or https URL. This also allows reading local files with a file: URL.
Interspire Email Marketer
Interspire Email Marketer 6.1.8
7.5
CVSSv2
CVE-2007-5131
SQL injection vulnerability in index.php in Interspire ActiveKB NX 2.x allows remote malicious users to execute arbitrary SQL commands via the catId parameter in a browse action. NOTE: it was separately reported that ActiveKB 1.5 is also affected.
Interspire Activekb Nx 2.6
Interspire Activekb Nx 2
1 EDB exploit
7.5
CVSSv2
CVE-2007-4147
Multiple unspecified vulnerabilities in Interspire ArticleLive NX prior to 1.7.1.2 have unknown impact and attack vectors, possibly related to (1) AL_SANITIZE and (2) "Calling the constructor to make sure things are checked, safe mode, etc."
Interspire Articlelive Nx 0.4
Interspire Articlelive Nx 0.3
7.5
CVSSv2
CVE-2008-2338
Interspire ActiveKB 1.5 and previous versions allows remote malicious users to gain privileges by setting the auth cookie to true when accessing unspecified scripts in /admin.
Interspire Activekb
1 EDB exploit
6.8
CVSSv2
CVE-2007-1060
Multiple PHP remote file inclusion vulnerabilities in Interspire SendStudio 2004.14 and previous versions, when register_globals and allow_fopenurl are enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the ROOTDIR parameter to (1) createemails.inc.p...
Interspire Sendstudio
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5274
CVE-2024-35388
CVE-2024-35396
elevation of privilege
CVE-2021-47544
file upload
CVE-2021-47545
memory leak
CVE-2024-4956
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »