Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

49 matches found

NVD
NVDadded 2011/10/21 10:55 a.m.10 views

CVE-2010-4967

SQL injection vulnerability in default.asp in ATCOM Netvolution 2.5.6 allows remote attackers to execute arbitrary SQL commands via the artID parameter...

7.5CVSS8.4AI score0.00275EPSS
Exploits1References5
Prion
Prionadded 2011/10/21 10:55 a.m.17 views

Sql injection

SQL injection vulnerability in ATCOM Netvolution 2.5.8 ASP allows remote attackers to execute arbitrary SQL commands via the Referer HTTP header...

7.5CVSS9AI score0.00907EPSS
Exploits1References3Affected Software1
ATTACKERKB
ATTACKERKBadded 2011/10/21 10:55 a.m.3 views

CVE-2010-4967

SQL injection vulnerability in default.asp in ATCOM Netvolution 2.5.6 allows remote attackers to execute arbitrary SQL commands via the artID parameter...

7.5CVSS6.4AI score0.00275EPSS
Exploits1References6
Prion
Prionadded 2011/10/21 10:55 a.m.9 views

Cross site scripting

Cross-site scripting XSS vulnerability in default.asp in ATCOM Netvolution allows remote attackers to inject arbitrary web script or HTML via the query parameter in a Search action...

4.3CVSS6.1AI score0.00225EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2011/10/21 10:55 a.m.2 views

CVE-2010-4966

Cross-site scripting XSS vulnerability in default.asp in ATCOM Netvolution allows remote attackers to inject arbitrary web script or HTML via the query parameter in a Search action...

4.3CVSS5.7AI score0.00225EPSS
Exploits1References2
Prion
Prionadded 2011/10/21 10:55 a.m.11 views

Sql injection

SQL injection vulnerability in default.asp in ATCOM Netvolution 1.0 ASP allows remote attackers to execute arbitrary SQL commands via the bpenid parameter...

7.5CVSS9.1AI score0.00711EPSS
Exploits1References1Affected Software1
Prion
Prionadded 2011/10/21 10:55 a.m.11 views

Sql injection

SQL injection vulnerability in default.asp in ATCOM Netvolution 2.5.6 allows remote attackers to execute arbitrary SQL commands via the artID parameter...

7.5CVSS9.1AI score0.00275EPSS
Exploits1References5Affected Software1
Cvelist
Cvelistadded 2011/10/21 10:0 a.m.19 views

CVE-2010-4966

Cross-site scripting XSS vulnerability in default.asp in ATCOM Netvolution allows remote attackers to inject arbitrary web script or HTML via the query parameter in a Search action...

5.7AI score0.00225EPSS
Exploits1References1
CVE
CVEadded 2011/10/21 10:0 a.m.49 views

CVE-2009-5103

The CVE-2009-5103 entry concerns ATCOM Netvolution 1.0 ASP with a Cross-Site Scripting (XSS) vulnerability exploitable via the email variable. Connected sources corroborate an XSS condition but do not provide concrete remediation steps, affected software versions beyond 1.0 ASP, or exploit status...

4.3CVSS5.9AI score0.00424EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2011/10/21 10:0 a.m.44 views

CVE-2009-5102

CVE-2009-5102 affects ATCOM Netvolution 1.0 ASP. The vulnerability is in default.asp and allows SQL injection via the bpe_nid parameter, enabling remote attackers to execute arbitrary SQL commands. The connected documents provide the same description across sources; no exploitation details or pat...

7.5CVSS8.7AI score0.00711EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2011/10/21 10:0 a.m.42 views

CVE-2010-4966

Technical details (affected product/version, root cause, fixes) are not publicly provided in the supplied documents; monitor for updates.

4.3CVSS5.8AI score0.00225EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2011/10/21 10:0 a.m.46 views

CVE-2011-3340

CVE-2011-3340 affects Netvolution CMS 2.5.8 (ASP) where the HTTP Referer header parsing allows blind SQL injection. The vulnerability enables remote attackers to alter content, exfiltrate data (usernames, plaintext passwords), and potentially execute commands on the database server without authen...

7.5CVSS8.6AI score0.00907EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2011/10/21 10:0 a.m.12 views

CVE-2010-4967

SQL injection vulnerability in default.asp in ATCOM Netvolution 2.5.6 allows remote attackers to execute arbitrary SQL commands via the artID parameter...

8.4AI score0.00275EPSS
Exploits1References5
CVE
CVEadded 2011/10/21 10:0 a.m.41 views

CVE-2010-4967

The CVE-2010-4967 issue concerns ATCOM Netvolution 2.5.6, where a SQL injection vulnerability exists in default.asp. The vulnerability allows remote attackers to execute arbitrary SQL commands via the artID parameter. No remediation details are provided in the connected documents; exploitation st...

7.5CVSS8.7AI score0.00275EPSS
Exploits1References5Affected Software1
Cvelist
Cvelistadded 2011/10/21 10:0 a.m.14 views

CVE-2009-5103

Cross-site scripting XSS vulnerability in ATCOM Netvolution 1.0 ASP allows remote attackers to inject arbitrary web script or HTML via the email variable...

5.7AI score0.00424EPSS
Exploits1References1
Cvelist
Cvelistadded 2011/10/21 10:0 a.m.21 views

CVE-2009-5102

SQL injection vulnerability in default.asp in ATCOM Netvolution 1.0 ASP allows remote attackers to execute arbitrary SQL commands via the bpenid parameter...

8.4AI score0.00711EPSS
Exploits1References1
Cvelist
Cvelistadded 2011/10/21 10:0 a.m.29 views

CVE-2011-3340

SQL injection vulnerability in ATCOM Netvolution 2.5.8 ASP allows remote attackers to execute arbitrary SQL commands via the Referer HTTP header...

8.3AI score0.00907EPSS
Exploits1References3
securityvulns
securityvulnsadded 2011/10/04 12:0 a.m.55 views

Netvolution referer header SQL injection vulnerability

Netvolution CMS v2.5.8 is vulnerable to a blind SQL injection attack in the HTTP “referer” header. A malicious user may utilize this vulnerability to modify content on the vulnerable website, inject malicious javascript code to a visitor’s browser, collect CMS usernames and plaintext passwords an...

7.5CVSS0.4AI score0.00907EPSS
Exploits1
Exploit DB
Exploit DBadded 2011/10/03 12:0 a.m.23 views

Netvolution 2.5.8 - 'referer' Header SQL Injection

source: https://www.securityfocus.com/bid/49918/info Netvolution is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2011/10/03 12:0 a.m.11 views

Netvolution 2.5.8 - referer Header SQL Injection

Netvolution 2.5.8 - referer Header SQL Injection source: https://www.securityfocus.com/bid/49918/info Netvolution is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker ...

0.6AI score
Exploits0
Rows per page
Query Builder