Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asp.net vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2006-1300
Microsoft .NET framework 2.0 (ASP.NET) in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 up to SP1 allows remote malicious users to bypass access restrictions via unspecified "URL paths" that can access Application Folder objects "explicitly by name.&q...
Microsoft .net Framework 2.0
668
VMScore
CVE-2020-25258
An issue exists in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. It uses ASP.NET BinaryFormatter.Deserialize in a manner that allows malicious users to transmit and execute bytecode in SOAP message...
Hyland Onbase
383
VMScore
CVE-2005-0509
Multiple cross-site scripting (XSS) vulnerabilities in the Mono 1.0.5 implementation of ASP.NET (.Net) allow remote malicious users to inject arbitrary HTML or web script via Unicode representations for ASCII fullwidth characters that are converted to normal ASCII characters, inc...
Mono Mono 1.0.5
Microsoft .net Framework 1.1
Microsoft .net Framework 1.0
445
VMScore
CVE-2012-3543
mono 2.10.x ASP.NET Web Form Hash collision DoS
Mono-project Mono
Canonical Ubuntu Linux 12.04
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
445
VMScore
CVE-2019-25069
A vulnerability, which was classified as problematic, has been found in Axios Italia Axios RE 1.7.0/7.0.0. This issue affects some unknown processing of the component Error Message Handler. The manipulation leads to information disclosure (ASP.NET). The attack may be initiated re...
Axiositalia Registro Elettronico 1.7.0
Axiositalia Registro Elettronico 7.0.0
NA
CVE-2023-49278
Umbraco is an ASP.NET content management system (CMS). Starting in version 8.0.0 and prior to versions 8.18.10, 10.8.1, and 12.3.4, a brute force exploit can be used to collect valid usernames. Versions 8.18.10, 10.8.1, and 12.3.4 contain a patch for this issue.
Umbraco Umbraco Cms
312
VMScore
CVE-2011-1424
The default configuration of ExShortcut\Web.config in EMC SourceOne Email Management prior to 6.6 SP1, when the Mobile Services component is used, does not properly set the localOnly attribute of the trace element, which allows remote authenticated users to obtain sensitive infor...
Emc Sourceone Email Management 6.5.2.3668
Emc Sourceone Email Management
445
VMScore
CVE-2012-4592
The Portal in McAfee Enterprise Mobility Manager (EMM) prior to 10.0 does not set the secure flag for the ASP.NET session cookie in an https session, which makes it easier for remote malicious users to capture this cookie by intercepting its transmission within an http session.
Mcafee Enterprise Mobility Manager
Mcafee Enterprise Mobility Manager 4.7
NA
CVE-2023-49273
Umbraco is an ASP.NET content management system (CMS). Starting in version 8.0.0 and prior to versions 8.18.10, 10.8.1, and 12.3.4, users with low privileges (Editor, etc.) are able to access some unintended endpoints. Versions 8.18.10, 10.8.1, and 12.3.4 contain a patch for this...
Umbraco Umbraco Cms
383
VMScore
CVE-2009-3450
Multiple cross-site scripting (XSS) vulnerabilities in WebCoreModule.ashx in RADactive I-Load prior to 2008.2.5.0 allow remote malicious users to inject arbitrary web script or HTML via parameters with names beginning with __ (underscore underscore) sequences, which are incompati...
Radactive I-load
Radactive I-load 2008.1.0.2
Radactive I-load 2008.1.0.1
Radactive I-load 2008.2.2.0
Radactive I-load 1.7.5.0
Radactive I-load 1.7.5.1
Radactive I-load 1.7.7.3
Radactive I-load 1.7.7.4
Radactive I-load 1.6.3.2
Radactive I-load 1.6.3.1
Radactive I-load 1.7.0.4
Radactive I-load 1.7.0.3
Radactive I-load 2008.1.3.0
Radactive I-load 2008.1.2.1
Radactive I-load 2008.2.4.0
Radactive I-load 2008.2.1.1
Radactive I-load 1.7.6.1
Radactive I-load 1.7.7.0
Radactive I-load 1.7.7.8
Radactive I-load 1.7.7.9
Radactive I-load 1.7.0.1
Radactive I-load 1.7.0.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »