Atcom Netvolution vulnerabilities
5 known vulnerabilities affecting atcom/netvolution.
Total CVEs
5
CISA KEV
0
Public exploits
4
Exploited in wild
0
Severity breakdown
HIGH4MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2011-3340P3HIGHCVSS 7.5PoCv2.5.62011-10-21
CVE-2011-3340 [HIGH] CWE-89 CVE-2011-3340: SQL injection vulnerability in ATCOM Netvolution 2.5.8 ASP allows remote attackers to execute arbitr
SQL injection vulnerability in ATCOM Netvolution 2.5.8 ASP allows remote attackers to execute arbitrary SQL commands via the Referer HTTP header.
nvd
CVE-2009-5102P3HIGHCVSS 7.5PoCv1.02011-10-21
CVE-2009-5102 [HIGH] CWE-89 CVE-2009-5102: SQL injection vulnerability in default.asp in ATCOM Netvolution 1.0 ASP allows remote attackers to e
SQL injection vulnerability in default.asp in ATCOM Netvolution 1.0 ASP allows remote attackers to execute arbitrary SQL commands via the bpe_nid parameter.
nvd
CVE-2010-4967P3HIGHCVSS 7.5PoCv2.5.62011-10-21
CVE-2010-4967 [HIGH] CWE-89 CVE-2010-4967: SQL injection vulnerability in default.asp in ATCOM Netvolution 2.5.6 allows remote attackers to exe
SQL injection vulnerability in default.asp in ATCOM Netvolution 2.5.6 allows remote attackers to execute arbitrary SQL commands via the artID parameter.
nvd
CVE-2014-2318P3HIGHCVSS 7.5v3.02014-03-11
CVE-2014-2318 [HIGH] CWE-89 CVE-2014-2318: SQL injection vulnerability in ATCOM Netvolution 3 allows remote attackers to execute arbitrary SQL
SQL injection vulnerability in ATCOM Netvolution 3 allows remote attackers to execute arbitrary SQL commands via the m parameter.
nvd
CVE-2009-5103P4MEDIUMCVSS 4.3PoCv1.02011-10-21
CVE-2009-5103 [MEDIUM] CWE-79 CVE-2009-5103: Cross-site scripting (XSS) vulnerability in ATCOM Netvolution 1.0 ASP allows remote attackers to inj
Cross-site scripting (XSS) vulnerability in ATCOM Netvolution 1.0 ASP allows remote attackers to inject arbitrary web script or HTML via the email variable.
nvd