RSS   Vulnerabilities for 'Netvolution'   RSS

2014-03-11
 
CVE-2014-2318

CWE-89
 

 
SQL injection vulnerability in ATCOM Netvolution 3 allows remote attackers to execute arbitrary SQL commands via the m parameter.

 
2011-10-21
 
CVE-2011-3340

CWE-89
 

 
SQL injection vulnerability in ATCOM Netvolution 2.5.8 ASP allows remote attackers to execute arbitrary SQL commands via the Referer HTTP header.

 
 
CVE-2010-4967

 

 
SQL injection vulnerability in default.asp in ATCOM Netvolution 2.5.6 allows remote attackers to execute arbitrary SQL commands via the artID parameter.

 
 
CVE-2010-4966

 

 
Cross-site scripting (XSS) vulnerability in default.asp in ATCOM Netvolution allows remote attackers to inject arbitrary web script or HTML via the query parameter in a Search action.

 
 
CVE-2009-5103

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in ATCOM Netvolution 1.0 ASP allows remote attackers to inject arbitrary web script or HTML via the email variable.

 
 
CVE-2009-5102

CWE-89
 

 
SQL injection vulnerability in default.asp in ATCOM Netvolution 1.0 ASP allows remote attackers to execute arbitrary SQL commands via the bpe_nid parameter.

 


Copyright 2019, cxsecurity.com

 

Back to Top