Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asp vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2006-3032
Multiple cross-site scripting (XSS) vulnerabilities in Xtreme ASP Photo Gallery 1.05 and previous versions, and possibly 2.0 (trial), allow remote malicious users to inject arbitrary web script or HTML via the (1) catname and (2) total parameters in (a) displaypic.asp, and the (3...
Pensacola Web Designs Xtreme Asp Photo Gallery 1.05
Pensacola Web Designs Xtreme Asp Photo Gallery 2.0
755
VMScore
CVE-2007-0678
SQL injection vulnerability in windows.asp in Fullaspsite Asp Hosting Sitesi allows remote malicious users to execute arbitrary SQL commands via the kategori_id parameter.
Fullaspsite Asp Hosting Site
1 EDB exploit
435
VMScore
CVE-2010-5045
Cross-site scripting (XSS) vulnerability in poll/default.asp in Smart ASP Survey allows remote malicious users to inject arbitrary web script or HTML via the catid parameter.
Sellatsite Smart Asp Survey
1 EDB exploit
445
VMScore
CVE-2008-6891
Multiple cross-site scripting (XSS) vulnerabilities in ASP Forum Script allow remote malicious users to inject arbitrary web script or HTML via the (1) forum_id parameter to (a) new_message.asp and (b) messages.asp, and the (2) query string to default.asp.
Codetoad Asp Forum Script
3 EDB exploits
668
VMScore
CVE-2012-4061
Multiple SQL injection vulnerabilities in ASP-DEv XM Diary allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter to diary_view.asp or (2) view_date parameter to default.asp.
Asp-dev Xm Diary
505
VMScore
CVE-2007-3158
download_script.asp in ASP Folder Gallery allows remote malicious users to read arbitrary files via a filename in the file parameter.
Tenyearsgone Asp Folder Gallery
1 EDB exploit
685
VMScore
CVE-2007-0950
Cross-site scripting (XSS) vulnerability in listmain.asp in Fullaspsite ASP Hosting Site allows remote malicious users to inject arbitrary web script or HTML via the cat parameter.
Fullaspsite Asp Hosting Site
1 EDB exploit
755
VMScore
CVE-2007-0951
SQL injection vulnerability in listmain.asp in Fullaspsite ASP Hosting Site allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Fullaspsite Asp Hosting Site
1 EDB exploit
510
VMScore
CVE-2008-5608
ASP AutoDealer stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file via a direct request for auto.mdb.
Aspapps Asp Autodealer Nil
2 EDB exploits
755
VMScore
CVE-2009-2776
SQL injection vulnerability in showresult.asp in Smart ASP Survey allows remote malicious users to execute arbitrary SQL commands via the catid parameter.
Sellatsite.com Smart Asp Survey
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »