Lucene search
K
ArialsoftwareCampaign Enterprise

5 matches found

CVE
CVE
added 2020/01/10 7:21 p.m.118 views

CVE-2012-3821

CVE-2012-3821 affects Arial Software Campaign Enterprise prior to or up to version 11.0.551, with a Security Bypass in the activate.asp page that could allow a remote attacker to modify the SerialNumber field. The trusted impact stated in sources is that this bypass enables unauthorized modificat...

4.3CVSS5.2AI score0.01169EPSS
CVE
CVE
added 2020/01/10 4:49 p.m.102 views

CVE-2012-3822

CVE-2012-3822 affects Arial Campaign Enterprise before v11.0.551. The vulnerability is an unauthorized access issue on the User-Edit.asp page that enables remote attackers to enumerate users’ credentials, i.e., information disclosure of credentials. The root cause is access to a user-edit interfa...

7.5CVSS7.5AI score0.01872EPSS
CVE
CVE
added 2020/01/10 4:55 p.m.98 views

CVE-2012-3824

CVE-2012-3824 affects Arial Campaign Enterprise prior to version 11.0.551, where multiple pages are accessible without authentication or authorization. The vulnerability is caused by insufficient access controls on web pages, enabling unauthorized viewing of pages. A vendor patch addressing this ...

7.5CVSS7.7AI score0.01847EPSS
CVE
CVE
added 2020/01/10 4:52 p.m.88 views

CVE-2012-3823

CVE-2012-3823 affects Arial Campaign Enterprise prior to version 11.0.551. The vulnerability is that passwords are stored in clear text and may be retrieved, leading to potential exposure of user credentials. Impact is confidentiality-related (credentials exposure) with no evidence of integrity/a...

7.5CVSS7.5AI score0.01476EPSS
CVE
CVE
added 2014/08/14 2:0 p.m.44 views

CVE-2012-3820

CVE-2012-3820 affects Arial Software Campaign Enterprise prior to 11.0.551. The vulnerability is multiple SQL injections in Campaign11.exe allowing an attacker to inject SQL via (1) SerialNumber to activate.asp or (2) UID to User-Edit.asp. Connections across sources confirm remote exploitation an...

7.5CVSS8.2AI score0.02082EPSS