Vulnerabilities (CVE)

Filtered by vendor Activecampaign Subscribe
Filtered by product Triolive
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-5056 1 Activecampaign 1 Triolive 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in department_offline_context.php in ActiveCampaign TrioLive before 1.58.7 allows remote attackers to inject arbitrary web script or HTML via the department_id parameter to index.php.
CVE-2008-5055 1 Activecampaign 1 Triolive 2024-11-21 7.5 HIGH N/A
SQL injection vulnerability in department_offline_context.php in ActiveCampaign TrioLive before 1.58.7 allows remote attackers to execute arbitrary SQL commands via the department_id parameter to index.php.