Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asp vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-3032
Multiple cross-site scripting (XSS) vulnerabilities in Xtreme ASP Photo Gallery 1.05 and previous versions, and possibly 2.0 (trial), allow remote malicious users to inject arbitrary web script or HTML via the (1) catname and (2) total parameters in (a) displaypic.asp, and the (3...
Pensacola Web Designs Xtreme Asp Photo Gallery 1.05
Pensacola Web Designs Xtreme Asp Photo Gallery 2.0
NA
CVE-2012-4060
Multiple SQL injection vulnerabilities in ASP-DEv XM Forums RC3 allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) profile.asp, (2) forum.asp, or (3) topic.asp.
Asp-dev Xm Forums -
1 EDB exploit
NA
CVE-2012-4061
Multiple SQL injection vulnerabilities in ASP-DEv XM Diary allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter to diary_view.asp or (2) view_date parameter to default.asp.
Asp-dev Xm Diary
NA
CVE-2007-3158
download_script.asp in ASP Folder Gallery allows remote malicious users to read arbitrary files via a filename in the file parameter.
Tenyearsgone Asp Folder Gallery
1 EDB exploit
NA
CVE-2008-5595
SQL injection vulnerability in detail.asp in ASP AutoDealer allows remote malicious users to execute arbitrary SQL commands via the ID parameter.
Aspapps Asp Autodealer Nil
1 EDB exploit
NA
CVE-2008-5608
ASP AutoDealer stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file via a direct request for auto.mdb.
Aspapps Asp Autodealer Nil
2 EDB exploits
NA
CVE-2010-5045
Cross-site scripting (XSS) vulnerability in poll/default.asp in Smart ASP Survey allows remote malicious users to inject arbitrary web script or HTML via the catid parameter.
Sellatsite Smart Asp Survey
1 EDB exploit
NA
CVE-2008-6890
SQL injection vulnerability in messages.asp in ASP Forum Script allows remote malicious users to execute arbitrary SQL commands via the message_id parameter.
Codetoad Asp Forum Script
1 EDB exploit
NA
CVE-2008-6891
Multiple cross-site scripting (XSS) vulnerabilities in ASP Forum Script allow remote malicious users to inject arbitrary web script or HTML via the (1) forum_id parameter to (a) new_message.asp and (b) messages.asp, and the (2) query string to default.asp.
Codetoad Asp Forum Script
3 EDB exploits
NA
CVE-2009-2776
SQL injection vulnerability in showresult.asp in Smart ASP Survey allows remote malicious users to execute arbitrary SQL commands via the catid parameter.
Sellatsite.com Smart Asp Survey
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »