Every CVE whose affected-product data names Iatek Portalapp, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2002-1659 — CVSS 10.0 (critical): user_profile.asp in PortalApp 2.2 allows local users to gain privileges by modifying the user_id variable.
CVE-2005-0948 — CVSS 7.5 (high): SQL injection vulnerability in ad_click.asp for PortalApp allows remote attackers to execute arbitrary SQL commands via the banner_id…
CVE-2005-4482 — CVSS 6.8 (medium): Cross-site scripting (XSS) vulnerability in login.asp in PortalApp 3.3 and earlier allows remote attackers to inject arbitrary web script…
CVE-2004-1786 — CVSS 5.0 (medium): PortalApp places user credentials under the web root with insufficient access control, which allows remote attackers to gain access to…
CVE-2005-0949 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in content.asp in Iatek PortalApp allow remote attackers to inject arbitrary web script…