Total
5 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2006-5919 | 1 Activecampaign | 1 Knowledgebuilder | 2024-11-21 | 7.5 HIGH | N/A |
PHP remote file inclusion vulnerability in admin/e_data/visEdit_control.class.php in ActiveCampaign KnowledgeBuilder 2.2 allows remote attackers to execute arbitrary PHP code via a URL in the visEdit_root parameter, a different vector than CVE-2003-1131. | |||||
CVE-2006-0970 | 1 Activecampaign | 6 1-2-all, General, Isalient and 3 more | 2024-11-21 | 7.5 HIGH | N/A |
PHP remote file inclusion vulnerability in index.php in one or more ActiveCampaign products, possibly SupportTrio, allows remote attackers to include and execute arbitrary files via the page parameter. | |||||
CVE-2005-3829 | 1 Activecampaign | 1 Knowledgebuilder | 2024-11-21 | 7.8 HIGH | N/A |
index.php in ActiveCampaign KnowledgeBuilder 2.4 and earlier allows remote attackers to cause a denial of service (CPU consumption) via an invalid category parameter, which causes a large number of SQL queries to be processed. | |||||
CVE-2005-3828 | 1 Activecampaign | 1 Knowledgebuilder | 2024-11-21 | 7.5 HIGH | N/A |
SQL injection vulnerability in index.php in ActiveCampaign KnowledgeBuilder 2.4 and earlier allows remote attackers to execute arbitrary SQL commands via the article parameter. | |||||
CVE-2003-1131 | 1 Activecampaign | 1 Knowledgebuilder | 2024-11-20 | 7.5 HIGH | N/A |
PHP remote file inclusion vulnerability in index.php in KnowledgeBuilder, referred to as KnowledgeBase, allows remote attackers to execute arbitrary PHP code by modifying the page parameter to reference a URL on a remote web server that contains the code. |