Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

60 matches found

NVD
NVDadded 2011/10/21 10:55 a.m.15 views

CVE-2010-4967

SQL injection vulnerability in default.asp in ATCOM Netvolution 2.5.6 allows remote attackers to execute arbitrary SQL commands via the artID parameter...

7.5CVSS8.4AI score0.02091EPSS
Exploits1References5
NVD
NVDadded 2011/10/21 10:55 a.m.20 views

CVE-2011-3340

SQL injection vulnerability in ATCOM Netvolution 2.5.8 ASP allows remote attackers to execute arbitrary SQL commands via the Referer HTTP header...

7.5CVSS8.3AI score0.02042EPSS
Exploits1References3
ATTACKERKB
ATTACKERKBadded 2011/10/21 10:55 a.m.2 views

CVE-2010-4966

Cross-site scripting XSS vulnerability in default.asp in ATCOM Netvolution allows remote attackers to inject arbitrary web script or HTML via the query parameter in a Search action...

4.3CVSS5.7AI score0.01458EPSS
Exploits1References2
Prion
Prionadded 2011/10/21 10:55 a.m.17 views

Sql injection

SQL injection vulnerability in ATCOM Netvolution 2.5.8 ASP allows remote attackers to execute arbitrary SQL commands via the Referer HTTP header...

7.5CVSS9AI score0.02042EPSS
Exploits1References3Affected Software1
Prion
Prionadded 2011/10/21 10:55 a.m.9 views

Cross site scripting

Cross-site scripting XSS vulnerability in default.asp in ATCOM Netvolution allows remote attackers to inject arbitrary web script or HTML via the query parameter in a Search action...

4.3CVSS6.1AI score0.01458EPSS
Exploits1References1
Prion
Prionadded 2011/10/21 10:55 a.m.11 views

Sql injection

SQL injection vulnerability in default.asp in ATCOM Netvolution 2.5.6 allows remote attackers to execute arbitrary SQL commands via the artID parameter...

7.5CVSS9.1AI score0.02091EPSS
Exploits1References5Affected Software1
CVE
CVEadded 2011/10/21 10:0 a.m.45 views

CVE-2009-5102

CVE-2009-5102 affects ATCOM Netvolution 1.0 ASP. The vulnerability is in default.asp and allows SQL injection via the bpe_nid parameter, enabling remote attackers to execute arbitrary SQL commands. The connected documents provide the same description across sources; no exploitation details or pat...

7.5CVSS8.7AI score0.02046EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2011/10/21 10:0 a.m.50 views

CVE-2009-5103

The CVE-2009-5103 entry concerns ATCOM Netvolution 1.0 ASP with a Cross-Site Scripting (XSS) vulnerability exploitable via the email variable. Connected sources corroborate an XSS condition but do not provide concrete remediation steps, affected software versions beyond 1.0 ASP, or exploit status...

4.3CVSS5.9AI score0.02557EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2011/10/21 10:0 a.m.43 views

CVE-2010-4967

The CVE-2010-4967 issue concerns ATCOM Netvolution 2.5.6, where a SQL injection vulnerability exists in default.asp. The vulnerability allows remote attackers to execute arbitrary SQL commands via the artID parameter. No remediation details are provided in the connected documents; exploitation st...

7.5CVSS8.7AI score0.02091EPSS
Exploits1References5Affected Software1
Cvelist
Cvelistadded 2011/10/21 10:0 a.m.29 views

CVE-2011-3340

SQL injection vulnerability in ATCOM Netvolution 2.5.8 ASP allows remote attackers to execute arbitrary SQL commands via the Referer HTTP header...

8.3AI score0.02042EPSS
Exploits1References3
Cvelist
Cvelistadded 2011/10/21 10:0 a.m.25 views

CVE-2010-4966

Cross-site scripting XSS vulnerability in default.asp in ATCOM Netvolution allows remote attackers to inject arbitrary web script or HTML via the query parameter in a Search action...

5.7AI score0.01458EPSS
Exploits1References1
Cvelist
Cvelistadded 2011/10/21 10:0 a.m.16 views

CVE-2010-4967

SQL injection vulnerability in default.asp in ATCOM Netvolution 2.5.6 allows remote attackers to execute arbitrary SQL commands via the artID parameter...

8.4AI score0.02091EPSS
Exploits1References5
Cvelist
Cvelistadded 2011/10/21 10:0 a.m.21 views

CVE-2009-5102

SQL injection vulnerability in default.asp in ATCOM Netvolution 1.0 ASP allows remote attackers to execute arbitrary SQL commands via the bpenid parameter...

8.4AI score0.02046EPSS
Exploits1References1
Cvelist
Cvelistadded 2011/10/21 10:0 a.m.26 views

CVE-2009-5103

Cross-site scripting XSS vulnerability in ATCOM Netvolution 1.0 ASP allows remote attackers to inject arbitrary web script or HTML via the email variable...

5.7AI score0.02557EPSS
Exploits1References1
CVE
CVEadded 2011/10/21 10:0 a.m.44 views

CVE-2010-4966

Technical details (affected product/version, root cause, fixes) are not publicly provided in the supplied documents; monitor for updates.

4.3CVSS5.8AI score0.01458EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2011/10/21 10:0 a.m.48 views

CVE-2011-3340

CVE-2011-3340 affects Netvolution CMS 2.5.8 (ASP) where the HTTP Referer header parsing allows blind SQL injection. The vulnerability enables remote attackers to alter content, exfiltrate data (usernames, plaintext passwords), and potentially execute commands on the database server without authen...

7.5CVSS8.6AI score0.02042EPSS
Exploits1References3Affected Software1
securityvulns
securityvulnsadded 2011/10/04 12:0 a.m.80 views

Netvolution referer header SQL injection vulnerability

Netvolution CMS v2.5.8 is vulnerable to a blind SQL injection attack in the HTTP “referer” header. A malicious user may utilize this vulnerability to modify content on the vulnerable website, inject malicious javascript code to a visitor’s browser, collect CMS usernames and plaintext passwords an...

7.5CVSS0.4AI score0.02042EPSS
Exploits1
Packet Storm
Packet Stormadded 2011/10/03 12:0 a.m.42 views

Netvolution CMS 2.5.8 Blind SQL Injection

Netvolution CMS v2.5.8 is vulnerable to a blind SQL injection attack in the HTTP “referer” header. A malicious user may utilize this vulnerability to modify content on the vulnerable website, inject malicious javascript code to a visitor’s browser, collect CMS usernames and plaintext passwords an...

7.5CVSS0.3AI score0.02042EPSS
Exploits1
Packet Storm
Packet Stormadded 2007/01/27 12:0 a.m.40 views

ProCheckUp Security Advisory 2006.14

PR06-14: IP Phones based on Centrality Communications/Aredfox PA168 chipset weak session management vulnerability This advisory has been published following consultation with UK NISCC http://www.niscc.gov.uk/ Date Found: 3rd November 2006 Date Public: 22nd January 2007 Vulnerable: Phones confirme...

0.2AI score
Exploits0
seebug.org
seebug.orgadded 2007/01/25 12:0 a.m.16 views

PA168 Chipset IP Phones Weak Session Management Exploit

No description provided by source. !/bin/bash PR06-14: IP Phones based on Centrality Communications/Aredfox PA168 chipset weak session management vulnerability Author: Adrian Pastor adrian.pastor-AT-procheckup.com from ProCheckUp This advisory has been published following consultation with UK NIS...

7.1AI score
Exploits0
Rows per page
Query Builder