Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aspindir vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-3884
SQL injection vulnerability in philboard_forum.asp in husrevforum 1.0.1 allows remote malicious users to execute arbitrary SQL commands via the forumid parameter. NOTE: it was later reported that 2.0.1 is also affected.
Aspindir Husrevforum 1.0.1
Aspindir Husrevforum 2.0.1
1 EDB exploit
7.5
CVSSv2
CVE-2008-6640
Multiple SQL injection vulnerabilities in BatmanPorTaL allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) uyeadmin.asp and (2) profil.asp. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
Aspindir Batmanportal
2 EDB exploits
7.5
CVSSv2
CVE-2006-5023
SQL injection vulnerability in kategori.asp in xweblog 2.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the kategori parameter.
Aspindir Xweblog
1 EDB exploit
4.3
CVSSv2
CVE-2007-3885
Cross-site scripting (XSS) vulnerability in philboard_search.asp in husrevforum 1.0.1 allows remote malicious users to inject arbitrary web script or HTML via the searchterms parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from thir...
Aspindir Husrevforum 1.0.1
6.5
CVSSv2
CVE-2008-6641
Multiple SQL injection vulnerabilities in Shader TV (Beta) allow remote authenticated administrators to execute arbitrary SQL commands via the sid parameter to (1) kanal.asp, (2) google.asp, and (3) hakk.asp in yonet/; and allow remote malicious users to execute arbitrary SQL com...
Aspindir Shader Tv
1 EDB exploit
7.5
CVSSv2
CVE-2006-7161
SQL injection vulnerability in giris_yap.asp in Hazir Site 2.0 allows remote malicious users to bypass authentication via the (1) k_a class or (2) sifre parameter.
Aspindir Hazirsite 2.0
7.5
CVSSv2
CVE-2008-3495
SQL injection vulnerability in kategori.asp in Pcshey Portal allows remote malicious users to execute arbitrary SQL commands via the kid parameter.
Aspindir Pcshey Portal
1 EDB exploit
7.5
CVSSv2
CVE-2008-2872
SQL injection vulnerability in default.asp in sHibby sHop 2.2 and previous versions allows remote malicious users to execute arbitrary SQL commands via the sayfa parameter.
Aspindir Shibby Shop
1 EDB exploit
5
CVSSv2
CVE-2008-2873
sHibby sHop 2.2 and previous versions stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request to Db/urun.mdb.
Aspindir Shibby Shop
1 EDB exploit
7.5
CVSSv2
CVE-2008-2882
upgrade.asp in sHibby sHop 2.2 and previous versions does not require administrative authentication, which allows remote malicious users to update a file or have unspecified other impact via a direct request.
Aspindir Shibby Shop
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »