Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Cce-interactInteract

3 matches found

CVE
CVEadded 2008/07/30 6:0 p.m.46 views

CVE-2008-3384

CVE-2008-3384 affects Interact Learning Community Environment Interact 2.4.1. Multiple directory traversal vulnerabilities in help/help.php allow remote attackers to include and execute arbitrary local files via a .. in the (1) module and (2) file parameters. The NVD entry notes a CVSS v2 base sc...

7.5CVSS7.3AI score0.03158EPSS
Web
CVE
CVEadded 2008/11/03 7:4 p.m.39 views

CVE-2008-3867

Vulnerability summary: CVE-2008-3867 affects Interact 2.4.1. The vulnerability is a SQL injection in spaces/emailuser.php, where input from the email_user_key parameter is not properly sanitized before use in SQL queries, allowing remote attackers to execute arbitrary SQL commands. Impact (as sta...

6.8CVSS8.4AI score0.01221EPSS
Web
CVE
CVEadded 2008/11/03 7:4 p.m.35 views

CVE-2008-3868

Concretely, CVE-2008-3868 affects Interact 2.4.1 and is a CSRF vulnerability that can allow remote attackers to hijack a super administrator’s session to perform actions that create new super administrator accounts. The root cause is forged HTTP requests that are executed in the context of an aut...

6.8CVSS7.1AI score0.00599EPSS