Vulnerabilities > ARK WEB

DATE	CVE	VULNERABILITY TITLE	RISK
2017-12-01	CVE-2017-10899	SQL Injection vulnerability in Ark-Web A-Reserve SQL injection vulnerability in the A-Reserve and A-Reserve for MT cloud versions 3.8.6 and earlier allows an attacker to execute arbitrary SQL commands via unspecified vectors. network low complexity ark-web CWE-89	7.5
2017-12-01	CVE-2017-10898	SQL Injection vulnerability in Ark-Web A-Member SQL injection vulnerability in the A-Member and A-Member for MT cloud versions 3.8.6 and earlier allows an attacker to execute arbitrary SQL commands via unspecified vectors. network low complexity ark-web CWE-89	7.5
2011-11-03	CVE-2011-4274	Cross-Site Scripting vulnerability in Ark-Web A-Form PC and A-Form PC Mobile Cross-site scripting (XSS) vulnerability in the A-Form PC and PC/Mobile before 3.1 plug-ins for Movable Type allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2011-2676. network ark-web sixapart CWE-79	4.3
2011-11-03	CVE-2011-2676	Improper Authentication vulnerability in Ark-Web products The A-Form and A-Form bamboo before 1.3.6 and 2.x before 2.0.3, and A-Form PC and PC/Mobile before 3.1, plug-ins for Movable Type do not require administrative authentication, which allows remote authenticated users to modify data via unspecified vectors. network low complexity ark-web six-apart CWE-287	5.5

Vulnerabilities > ARK WEB {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"ARK WEB"}]}