Interspire: >> Activekb Security Vulnerabilities
Directory traversal vulnerability in loadpanel.php in Interspire ActiveKB allows remote attackers to read arbitrary files and possibly have unspecified other impact via directory traversal sequences in the Panel parameter.
CVSS Score
7.5
EPSS Score
0.011
Published
2010-07-22
Interspire ActiveKB 1.5 and earlier allows remote attackers to gain privileges by setting the auth cookie to true when accessing unspecified scripts in /admin.
CVSS Score
7.5
EPSS Score
0.031
Published
2008-05-19
SQL injection vulnerability in admin/index.php in Interspire ActiveKB 1.5 allows remote attackers to execute arbitrary SQL commands via the questId parameter in a hideQuestion ToDo action. NOTE: the catId vector is already covered by CVE-2007-5131.
CVSS Score
6.4
EPSS Score
0.005
Published
2007-10-12