Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asp-nuke vulnerabilities and exploits
(subscribe to this query)
8.5
CVSSv2
CVE-2006-7152
default.asp in ASP-Nuke Community 1.5 and previous versions allows remote malicious users to gain privileges by setting certain pseudo cookie values.
Asp-nuke Asp-nuke 1.0
Asp-nuke Asp-nuke 1.2
Asp-nuke Asp-nuke 1.3
Asp-nuke Asp-nuke Rc2
Asp-nuke Asp-nuke Rc3
Asp-nuke Asp-nuke 1.5
Asp-nuke Asp-nuke Rc1
1 EDB exploit
5
CVSSv2
CVE-2004-1788
ASP-Nuke 1.3 and previous versions places user credentials under the web document root with insufficient access control, which allows remote malicious users to obtain sensitive information via a direct request to main.mdb.
Asp-nuke Asp-nuke 1.2
Asp-nuke Asp-nuke 1.3
Asp-nuke Asp-nuke 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2002-0522
ASP-Nuke RC2 and previous versions allows remote malicious users to bypass authentication and gain privileges by modifying the "pseudo" cookie.
Asp-nuke Asp-nuke Rc1
Asp-nuke Asp-nuke Rc2
5.1
CVSSv2
CVE-2002-0521
Cross-site scripting vulnerabilities in ASP-Nuke RC2 and previous versions allow remote malicious users to execute script or gain privileges as other ASP-Nuke users via script in (1) the name parameter in downloads.asp, (2) the message parameter in Post.asp, or (3) a web site URL...
Asp-nuke Asp-nuke Rc2
Asp-nuke Asp-nuke Rc1
5
CVSSv2
CVE-2002-0523
ASP-Nuke RC2 and previous versions allows remote malicious users to list all logged-in users by submitting an invalid "pseudo" cookie.
Asp-nuke Asp-nuke Rc2
Asp-nuke Asp-nuke Rc1
5
CVSSv2
CVE-2002-0524
ASP-Nuke RC2 and previous versions allows remote malicious users to determine the absolute path of the server by (1) calling database-inc.asp with incorrect cookies, or (2) calling Post.asp with certain arguments, which leak the pathname in an error message.
Asp-nuke Asp-nuke Rc1
Asp-nuke Asp-nuke Rc2
7.5
CVSSv2
CVE-2006-6070
SQL injection vulnerability in module/account/register/register.asp in ASP Nuke 0.80 and previous versions allows remote malicious users to execute arbitrary SQL commands via the StateCode parameter.
Asp-nuke Asp-nuke
1 EDB exploit
7.5
CVSSv2
CVE-2005-2067
SQL injection vulnerability in article.asp in unknown versions of aspnuke allows remote malicious users to execute arbitrary SQL commands via the articleid parameter.
Asp-nuke Asp-nuke
1 EDB exploit
7.5
CVSSv2
CVE-2005-2066
SQL injection vulnerability in comment_post.asp in ASP Nuke 0.80 allows remote malicious users to execute arbitrary SQL statements via the TaskID parameter.
Asp-nuke Asp-nuke 0.80
1 EDB exploit
5
CVSSv2
CVE-2005-2064
Multiple cross-site scripting vulnerabilities in ASP Nuke 0.80 allow remote malicious users to inject arbitrary web script or HTML via the (1) email parameter to forgot_password.asp, or the (2) FirstName, (3) LastName, (4) Username, (5) Password, (6) Address1, (7) Address2, (8) C...
Asp-nuke Asp-nuke 0.80
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977
IMAP
local users
CVE-2024-32038
CVE-2023-49963
CVE-2023-22869
CVE-2024-31497
local
CVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »