Known Vulnerabilities for products from Interspire
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Interspire".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-44790 json | Interspire Email Marketer through 6.5.1 allows SQL Injection via the surveys module. An unauthenticated attacker could succes... | 7.5 - HIGH | 2022-12-09 | 2022-12-14 |
| CVE-2022-40777 json | Interspire Email Marketer through 6.5.0 allows arbitrary file upload via a surveys_submit.php "create survey and submit surve... | 8.8 - HIGH | 2022-10-11 | 2022-10-13 |
| CVE-2018-19651 json | admin/functions/remote.php in Interspire Email Marketer through 6.1.6 has Server Side Request Forgery (SSRF) via a what=impor... | 6.5 - MEDIUM | 2018-11-28 | 2023-11-07 |
| CVE-2018-19553 json | Interspire Email Marketer through 6.1.6 has SQL Injection via an updateblock sortorder request to Dynamiccontenttags.php | 8.8 - HIGH | 2018-11-26 | 2023-11-07 |
| CVE-2018-19552 json | Interspire Email Marketer through 6.1.6 has SQL Injection via a deleteblock blockid[] request to Dynamiccontenttags.php. | 8.8 - HIGH | 2018-11-26 | 2023-11-07 |
| CVE-2018-19551 json | Interspire Email Marketer through 6.1.6 has SQL Injection via a checkduplicatetags tagname request to Dynamiccontenttags.php. | 8.8 - HIGH | 2018-11-26 | 2023-11-07 |
| CVE-2018-19550 json | Interspire Email Marketer through 6.1.6 allows arbitrary file upload via a surveys_submit.php "create survey and submit surve... | 8.8 - HIGH | 2018-11-26 | 2023-11-07 |
| CVE-2018-19549 json | Interspire Email Marketer through 6.1.6 has SQL Injection via a tagids Delete action to Dynamiccontenttags.php. | 8.8 - HIGH | 2018-11-26 | 2023-11-07 |
| CVE-2017-14322 json | The function in charge to check whether the user is already logged in init.php in Interspire Email Marketer (IEM) prior to 6.... | 9.8 - CRITICAL | 2017-10-18 | 2019-05-10 |
| CVE-2009-4957 json | Directory traversal vulnerability in loadpanel.php in Interspire ActiveKB allows remote attackers to read arbitrary files and... | 7.5 - HIGH | 2010-07-22 | 2017-09-19 |
| CVE-2009-4192 json | Directory traversal vulnerability in dialog/file_manager.php in Interspire Knowledge Manager 5 allows remote attackers to rea... | Not Provided | 2009-12-03 | 2026-04-23 |
| CVE-2009-0412 json | The ProcessLogin function in class.auth.php in Interspire Shopping Cart (ISC) 4.0.1 Ultimate edition allows remote attackers ... | Not Provided | 2009-02-03 | 2026-04-23 |
| CVE-2008-2338 json | Interspire ActiveKB 1.5 and earlier allows remote attackers to gain privileges by setting the auth cookie to true when access... | Not Provided | 2008-05-19 | 2026-04-23 |
| CVE-2008-1076 json | Cross-site scripting (XSS) vulnerability in search.php in Interspire Shopping Cart 1.x allows remote attackers to inject arbi... | Not Provided | 2008-02-29 | 2026-04-23 |
| CVE-2007-5426 json | Multiple cross-site scripting (XSS) vulnerabilities in ActiveKB NX 2.5.4 allow remote attackers to inject arbitrary web scrip... | Not Provided | 2007-10-12 | 2026-04-23 |
| CVE-2007-5425 json | SQL injection vulnerability in admin/index.php in Interspire ActiveKB 1.5 allows remote attackers to execute arbitrary SQL co... | Not Provided | 2007-10-12 | 2026-04-23 |
| CVE-2007-5131 json | SQL injection vulnerability in index.php in Interspire ActiveKB NX 2.x allows remote attackers to execute arbitrary SQL comma... | Not Provided | 2007-09-27 | 2026-04-23 |
| CVE-2007-4147 json | Multiple unspecified vulnerabilities in Interspire ArticleLive NX before 1.7.1.2 have unknown impact and attack vectors, poss... | Not Provided | 2007-08-03 | 2026-04-23 |
| CVE-2007-1060 json | Multiple PHP remote file inclusion vulnerabilities in Interspire SendStudio 2004.14 and earlier, when register_globals and al... | Not Provided | 2007-02-22 | 2026-04-23 |
| CVE-2006-0210 json | Cross-site scripting (XSS) vulnerability in index.php in Interspire TrackPoint NX before 0.1 allows remote attackers to injec... | Not Provided | 2006-01-14 | 2025-04-03 |
Known software with vulnerabilities from Interspire
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Interspire | Email Marketer | 5.0.10 |