Vulnerabilities > Arialsoftware > Campaign Enterprise > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-01-10 | CVE-2012-3824 | Improper Authentication vulnerability in Arialsoftware Campaign Enterprise In Arial Campaign Enterprise before 11.0.551, multiple pages are accessible without authentication or authorization. | 7.5 |
| 2020-01-10 | CVE-2012-3823 | Insufficiently Protected Credentials vulnerability in Arialsoftware Campaign Enterprise Arial Campaign Enterprise before 11.0.551 stores passwords in clear text and these may be retrieved. | 7.5 |
| 2020-01-10 | CVE-2012-3822 | Incorrect Authorization vulnerability in Arialsoftware Campaign Enterprise Arial Campaign Enterprise before 11.0.551 has unauthorized access to the User-Edit.asp page, which allows remote attackers to enumerate users' credentials. | 7.5 |