| CVE-2006-5919 | | 0.04 | — | 0.13 | | Nov 15, 2006 | PHP remote file inclusion vulnerability in admin/e_data/visEdit_control.class.php in ActiveCampaign KnowledgeBuilder 2.2 allows remote attackers to execute arbitrary PHP code via a URL in the visEdit_root parameter, a different vector than CVE-2003-1131. |
| CVE-2003-1131 | | 0.03 | — | 0.06 | | Dec 31, 2003 | PHP remote file inclusion vulnerability in index.php in KnowledgeBuilder, referred to as KnowledgeBase, allows remote attackers to execute arbitrary PHP code by modifying the page parameter to reference a URL on a remote web server that contains the code. |
| CVE-2006-0970 | | 0.00 | — | 0.01 | | Mar 3, 2006 | PHP remote file inclusion vulnerability in index.php in one or more ActiveCampaign products, possibly SupportTrio, allows remote attackers to include and execute arbitrary files via the page parameter. |
| CVE-2005-3828 | | 0.00 | — | 0.01 | | Nov 26, 2005 | SQL injection vulnerability in index.php in ActiveCampaign KnowledgeBuilder 2.4 and earlier allows remote attackers to execute arbitrary SQL commands via the article parameter. |
| CVE-2005-3829 | | 0.00 | — | 0.01 | | Nov 26, 2005 | index.php in ActiveCampaign KnowledgeBuilder 2.4 and earlier allows remote attackers to cause a denial of service (CPU consumption) via an invalid category parameter, which causes a large number of SQL queries to be processed. |
