Alstrasoft Video Share Enterprise — known CVE vulnerabilities
Every CVE whose affected-product data names Alstrasoft Video Share Enterprise, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2007-2017 — CVSS 7.5 (high): siteadmin/useredit.php in AlstraSoft Video Share Enterprise does not check authentication, which allows remote attackers to obtain or…
CVE-2008-3386 — CVSS 7.5 (high): SQL injection vulnerability in album.php in AlstraSoft Video Share Enterprise 4.51 allows remote attackers to execute arbitrary SQL…
CVE-2006-4443 — CVSS 7.5 (high): PHP remote file inclusion vulnerability in myajaxphp.php in AlstraSoft Video Share Enterprise allows remote attackers to execute arbitrary…
CVE-2007-4086 — CVSS 6.8 (medium): Multiple SQL injection vulnerabilities in AlstraSoft Video Share Enterprise allow remote attackers to execute arbitrary SQL commands via…
CVE-2007-2018 — CVSS 6.5 (medium): SQL injection vulnerability in msg.php in AlstraSoft Video Share Enterprise allows remote authenticated users to execute arbitrary SQL…
CVE-2007-4077 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in AlstraSoft Video Share Enterprise allow remote attackers to inject arbitrary web…
CVE-2007-4087 — CVSS 4.3 (medium): AlstraSoft Video Share Enterprise allows remote attackers to obtain sensitive information (the full path) via (1) a ' (quote) character in…