Netvolution Security Vulnerabilities and Issues — Netvolution CVE List

Lucene search

AtcomNetvolution

6 matches found

CVE•added 2011/10/21 10:55 a.m.•39 views

CVE-2009-5103

Cross-site scripting (XSS) vulnerability in ATCOM Netvolution 1.0 ASP allows remote attackers to inject arbitrary web script or HTML via the email variable.

4.3CVSS5.9AI score0.00732EPSS

CVE•added 2011/10/21 10:55 a.m.•37 views

CVE-2011-3340

SQL injection vulnerability in ATCOM Netvolution 2.5.8 ASP allows remote attackers to execute arbitrary SQL commands via the Referer HTTP header.

7.5CVSS8.6AI score0.0175EPSS

CVE•added 2011/10/21 10:55 a.m.•35 views

CVE-2009-5102

SQL injection vulnerability in default.asp in ATCOM Netvolution 1.0 ASP allows remote attackers to execute arbitrary SQL commands via the bpe_nid parameter.

7.5CVSS8.7AI score0.01438EPSS

CVE•added 2011/10/21 10:55 a.m.•34 views

CVE-2010-4967

SQL injection vulnerability in default.asp in ATCOM Netvolution 2.5.6 allows remote attackers to execute arbitrary SQL commands via the artID parameter.

7.5CVSS8.7AI score0.00528EPSS

CVE•added 2011/10/21 10:55 a.m.•33 views

CVE-2010-4966

Cross-site scripting (XSS) vulnerability in default.asp in ATCOM Netvolution allows remote attackers to inject arbitrary web script or HTML via the query parameter in a Search action.

4.3CVSS5.8AI score0.00318EPSS

CVE•added 2014/03/11 1:0 p.m.•28 views

CVE-2014-2318

SQL injection vulnerability in ATCOM Netvolution 3 allows remote attackers to execute arbitrary SQL commands via the m parameter.

7.5CVSS8.7AI score0.0036EPSS