Lucene search
Campaign Enterprise Security Vulnerabilities - 2020
cve
A Security Bypass vulnerability exists in the activate.asp page in Arial Software Campaign Enterprise 11.0.551, which could let a remote malicious user modify the SerialNumber field.
4.3CVSS
5.2AI Score
0.008EPSS
2020-01-10 08:15 PM
99
cve
Arial Campaign Enterprise before 11.0.551 has unauthorized access to the User-Edit.asp page, which allows remote attackers to enumerate users' credentials.
7.5CVSS
7.5AI Score
0.018EPSS
2020-01-10 05:15 PM
84
cve
Arial Campaign Enterprise before 11.0.551 stores passwords in clear text and these may be retrieved.
7.5CVSS
7.5AI Score
0.011EPSS
2020-01-10 05:15 PM
74
cve
In Arial Campaign Enterprise before 11.0.551, multiple pages are accessible without authentication or authorization.
7.5CVSS
7.7AI Score
0.011EPSS
2020-01-10 05:15 PM
80