Vulnerabilities (CVE)

Filtered by vendor Activecampaign Subscribe
Filtered by product Knowledgebuilder
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2006-5919 1 Activecampaign 1 Knowledgebuilder 2024-11-21 7.5 HIGH N/A
PHP remote file inclusion vulnerability in admin/e_data/visEdit_control.class.php in ActiveCampaign KnowledgeBuilder 2.2 allows remote attackers to execute arbitrary PHP code via a URL in the visEdit_root parameter, a different vector than CVE-2003-1131.
CVE-2006-0970 1 Activecampaign 6 1-2-all, General, Isalient and 3 more 2024-11-21 7.5 HIGH N/A
PHP remote file inclusion vulnerability in index.php in one or more ActiveCampaign products, possibly SupportTrio, allows remote attackers to include and execute arbitrary files via the page parameter.
CVE-2005-3829 1 Activecampaign 1 Knowledgebuilder 2024-11-21 7.8 HIGH N/A
index.php in ActiveCampaign KnowledgeBuilder 2.4 and earlier allows remote attackers to cause a denial of service (CPU consumption) via an invalid category parameter, which causes a large number of SQL queries to be processed.
CVE-2005-3828 1 Activecampaign 1 Knowledgebuilder 2024-11-21 7.5 HIGH N/A
SQL injection vulnerability in index.php in ActiveCampaign KnowledgeBuilder 2.4 and earlier allows remote attackers to execute arbitrary SQL commands via the article parameter.
CVE-2003-1131 1 Activecampaign 1 Knowledgebuilder 2024-11-20 7.5 HIGH N/A
PHP remote file inclusion vulnerability in index.php in KnowledgeBuilder, referred to as KnowledgeBase, allows remote attackers to execute arbitrary PHP code by modifying the page parameter to reference a URL on a remote web server that contains the code.