Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2015-7228

Malware in sbrugna...

7.5CVSS6.3AI score0.00549EPSS
Exploits3References4
CNVD
CNVDadded 2015/10/26 12:0 a.m.1 views

Multiple K2 Products SQL Injection Vulnerabilities

K2 blackpearl, smartforms, and K2 for SharePoint are all products from K2 Corporation. blackpearl is a suite of applications for building and running business processes. smartforms is an online business system push messaging product. k2 for SharePoint is a suite of applications for creating forms...

7.5CVSS8.7AI score0.00549EPSS
Exploits3References1
NVD
NVDadded 2015/10/21 6:59 p.m.9 views

CVE-2015-7299

SQL injection vulnerability in Runtime/Runtime/AjaxCall.ashx in K2 blackpearl, smartforms, and K2 for SharePoint 4.6.7 allows remote attackers to execute arbitrary SQL commands via the xml parameter...

7.5CVSS8.3AI score0.00549EPSS
Exploits3References2
Prion
Prionadded 2015/10/21 6:59 p.m.14 views

Sql injection

SQL injection vulnerability in Runtime/Runtime/AjaxCall.ashx in K2 blackpearl, smartforms, and K2 for SharePoint 4.6.7 allows remote attackers to execute arbitrary SQL commands via the xml parameter...

7.5CVSS9.1AI score0.00549EPSS
Exploits3References2Affected Software3
CVE
CVEadded 2015/10/21 6:0 p.m.55 views

CVE-2015-7299

The CVE-2015-7299 issue affects K2 products: K2 blackpearl, SmartForms, and K2 for SharePoint (version 4.6.7). A Boolean-based SQL injection exists in Runtime/Runtime/AjaxCall.ashx via the xml parameter, allowing an anonymous attacker to read data and potentially access or reconstruct sensitive D...

7.5CVSS8.6AI score0.00549EPSS
Exploits3References2Affected Software3
Cvelist
Cvelistadded 2015/10/21 6:0 p.m.17 views

CVE-2015-7299

SQL injection vulnerability in Runtime/Runtime/AjaxCall.ashx in K2 blackpearl, smartforms, and K2 for SharePoint 4.6.7 allows remote attackers to execute arbitrary SQL commands via the xml parameter...

8.3AI score0.00549EPSS
Exploits3References2
0day.today
0day.todayadded 2015/10/13 12:0 a.m.67 views

K2 SmartForms / BlackPearl SQL Injection Vulnerability

K2 SmartForms, BlackPearl, and K2 for Sharepoint version 4.6.7 suffer from a boolean-based remote SQL injection vulnerability. Title: Boolean-based SQL injection Vulnerability in K2 Platforms. Author: Wissam Bashour - Help AG Middle East Vendor: K2 Product: SmartForms, BlackPearl, K2 for sharepoi...

7.5CVSS7.6AI score0.00549EPSS
Exploits3
Packet Storm
Packet Stormadded 2015/10/13 12:0 a.m.56 views

K2 SmartForms / BlackPearl SQL Injection

Title: Boolean-based SQL injection Vulnerability in K2 Platforms. Author: Wissam Bashour - Help AG Middle East Vendor: K2 Product: SmartForms, BlackPearl, K2 for sharepoint Version: 4.6.7 Tested Version: Version 4.6.7 Severity: HIGH CVE Reference: CVE-2015-7299 About the Product: K2 smartforms ca...

7.5CVSS0.4AI score0.00549EPSS
Exploits3
Rows per page
Query Builder