Atcom » Netvolution : Security Vulnerabilities, CVEs,
SQL injection vulnerability in ATCOM Netvolution 3 allows remote attackers to execute arbitrary SQL commands via the m parameter.
Max CVSS
7.5
EPSS Score
0.39%
Published
2014-03-11
Updated
2017-08-29
SQL injection vulnerability in ATCOM Netvolution 2.5.8 ASP allows remote attackers to execute arbitrary SQL commands via the Referer HTTP header.
Max CVSS
7.5
EPSS Score
0.09%
Published
2011-10-21
Updated
2018-10-09
SQL injection vulnerability in default.asp in ATCOM Netvolution 2.5.6 allows remote attackers to execute arbitrary SQL commands via the artID parameter.
Max CVSS
7.5
EPSS Score
0.07%
Published
2011-10-21
Updated
2017-08-29
Cross-site scripting (XSS) vulnerability in default.asp in ATCOM Netvolution allows remote attackers to inject arbitrary web script or HTML via the query parameter in a Search action.
Max CVSS
4.3
EPSS Score
0.17%
Published
2011-10-21
Updated
2012-05-14
Cross-site scripting (XSS) vulnerability in ATCOM Netvolution 1.0 ASP allows remote attackers to inject arbitrary web script or HTML via the email variable.
Max CVSS
4.3
EPSS Score
0.17%
Published
2011-10-21
Updated
2012-05-14
SQL injection vulnerability in default.asp in ATCOM Netvolution 1.0 ASP allows remote attackers to execute arbitrary SQL commands via the bpe_nid parameter.
Max CVSS
7.5
EPSS Score
0.13%
Published
2011-10-21
Updated
2012-05-14
6 vulnerabilities found