Every CVE whose affected-product data names Idevspot Isupport, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2005-4616 — CVSS 7.5 (high): SQL injection vulnerability in index.php in iSupport 1.06 allows remote attackers to execute arbitrary SQL commands via the include_file…
CVE-2007-6539 — CVSS 6.8 (medium): PHP local file inclusion vulnerability in index.php in IDevspot iSupport 1.8 allows remote attackers to include local files via the…
CVE-2012-5326 — CVSS 6.8 (medium): Cross-site request forgery (CSRF) vulnerability in admin/function.php in IDevSpot iSupport 1.x allows remote attackers to hijack the…
CVE-2009-4434 — CVSS 5.0 (medium): Directory traversal vulnerability in index.php in IDevSpot iSupport 1.8 and earlier allows remote attackers to read arbitrary files via a…
CVE-2006-4884 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in IDevSpot iSupport 1.8 allow remote attackers to inject arbitrary web script or HTML…
CVE-2009-4433 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in IDevSpot iSupport 1.8 and earlier allow remote attackers to inject arbitrary web…