21 matches found
EUVD-2018-11241
Malware in sbrugna...
EUVD-2018-11238
Malware in sbrugna...
EUVD-2018-11240
Malware in sbrugna...
Sql injection
Interspire Email Marketer through 6.1.6 has SQL Injection via a checkduplicatetags tagname request to Dynamiccontenttags.php...
CVE-2018-19549
Interspire Email Marketer through 6.1.6 has SQL Injection via a tagids Delete action to Dynamiccontenttags.php...
Sql injection
Interspire Email Marketer through 6.1.6 has SQL Injection via a deleteblock blockid request to Dynamiccontenttags.php...
CVE-2018-19553
Interspire Email Marketer through 6.1.6 has SQL Injection via an updateblock sortorder request to Dynamiccontenttags.php...
CVE-2018-19553
Interspire Email Marketer through 6.1.6 has SQL Injection via an updateblock sortorder request to Dynamiccontenttags.php...
CVE-2018-19552
Interspire Email Marketer through 6.1.6 has SQL Injection via a deleteblock blockid request to Dynamiccontenttags.php...
CVE-2018-19551
Interspire Email Marketer through 6.1.6 has SQL Injection via a checkduplicatetags tagname request to Dynamiccontenttags.php...
Sql injection
Interspire Email Marketer through 6.1.6 has SQL Injection via an updateblock sortorder request to Dynamiccontenttags.php...
Sql injection
Interspire Email Marketer through 6.1.6 has SQL Injection via a tagids Delete action to Dynamiccontenttags.php...
CVE-2018-19551
Interspire Email Marketer through 6.1.6 has SQL Injection via a checkduplicatetags tagname request to Dynamiccontenttags.php...
CVE-2018-19549
Interspire Email Marketer up to version 6.1.6 is affected by a SQL Injection via the tagids Delete action in Dynamiccontenttags.php. Root cause is improper handling of tagids in the delete-tags flow, enabling arbitrary SQL execution with partial/high impact to confidentiality, integrity, and avai...
CVE-2018-19549
Interspire Email Marketer through 6.1.6 has SQL Injection via a tagids Delete action to Dynamiccontenttags.php...
CVE-2018-19553
Summary (CVE-2018-19553): Interspire Email Marketer up to version 6.1.6 is affected by an SQL Injection in the Dynamiccontenttags.php file, triggered by an updateblock sortorder request. The root cause is unsafely handled input in that function, allowing a remote attacker to inject and execute SQ...
CVE-2018-19553
Interspire Email Marketer through 6.1.6 has SQL Injection via an updateblock sortorder request to Dynamiccontenttags.php...
CVE-2018-19552
Interspire Email Marketer through 6.1.6 has SQL Injection via a deleteblock blockid request to Dynamiccontenttags.php...
CVE-2018-19551
CVE-2018-19551 affects Interspire Email Marketer up to version 6.1.6, where a SQL injection exists in the checkduplicatetags tagname request handled by Dynamiccontenttags.php. The root cause is unsafe handling of input leading to arbitrary SQL execution by a remote attacker. The impact described ...
Interspire Email Marketer SQL Injection Vulnerability (CNVD-2018-26789)
BigCommerec Interspire Email Marketer IEM is a suite of email marketing software from BigCommerec, USA. A SQL injection vulnerability exists in the 'deleteblock' function of the Dynamiccontenttags.php file in BigCommerec IEM 6.1.6 and earlier versions. A remote attacker can exploit this...