Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Interspire Subscribe
Filtered by product Activekb
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-5425 1 Interspire 1 Activekb 2018-10-15 6.4 MEDIUM N/A
SQL injection vulnerability in admin/index.php in Interspire ActiveKB 1.5 allows remote attackers to execute arbitrary SQL commands via the questId parameter in a hideQuestion ToDo action. NOTE: the catId vector is already covered by CVE-2007-5131.
CVE-2008-2338 1 Interspire 1 Activekb 2017-09-28 7.5 HIGH N/A
Interspire ActiveKB 1.5 and earlier allows remote attackers to gain privileges by setting the auth cookie to true when accessing unspecified scripts in /admin.
CVE-2009-4957 1 Interspire 1 Activekb 2017-09-18 7.5 HIGH N/A
Directory traversal vulnerability in loadpanel.php in Interspire ActiveKB allows remote attackers to read arbitrary files and possibly have unspecified other impact via directory traversal sequences in the Panel parameter.