Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asp vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2003-0560
SQL injection vulnerability in shopexd.asp for VP-ASP allows remote malicious users to gain administrator privileges via the id parameter.
Virtual Programming Vp-asp 5.0
2 EDB exploits
7.5
CVSSv2
CVE-2007-5887
SQL injection vulnerability in boards/printer.asp in ASP Message Board 2.2.1c allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Infuseum Asp Message Board 2.2.1c
1 EDB exploit
5
CVSSv2
CVE-2004-2164
shoprestoreorder.asp in VP-ASP 5.0 does not close the database connection when a user restores a previous order, which allows remote malicious users to cause a denial of service (connection consumption).
Virtual Programming Vp-asp 5.0
4.3
CVSSv2
CVE-2006-2870
Cross-site scripting (XSS) vulnerability in forum_search.asp in Intelligent Solutions Inc. ASP Discussion Forum allows remote malicious users to inject arbitrary web script or HTML via the search variable.
Intelligent Solutions Asp Discussion Forum
7.5
CVSSv2
CVE-2008-5924
SQL injection vulnerability in diary_viewC.asp in ASP-DEv XM Events Diary allows remote malicious users to execute arbitrary SQL commands via the cat parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Asp-dev Xm Events Diary
5
CVSSv2
CVE-2008-5925
ASP-DEv XM Events Diary stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file via a direct request for diary.mdb.
Asp-dev Xm Events Diary
4.3
CVSSv2
CVE-2004-2123
Multiple cross-site scripting (XSS) vulnerabilities in Nextplace.com E-Commerce ASP Engine allow remote malicious users to inject arbitrary web script or HTML via the (1) level parameter of productdetail.asp, (2) searchKey parameter of searchresults.asp, and possibly (3) level pa...
Nextplace E-commerce Asp Engine
4.3
CVSSv2
CVE-2007-4252
Absolute path traversal vulnerability in a certain ActiveX control in CkString.dll 1.1 and previous versions in CHILKAT ASP String allows remote malicious users to create or overwrite arbitrary files via a full pathname in the first argument to the SaveToFile method, a different ...
Chilkat Software Asp String 1.1
1 EDB exploit
7.5
CVSSv2
CVE-2008-6329
SQL injection vulnerability in Employee/login.asp in Pre ASP Job Board allows remote malicious users to execute arbitrary SQL commands via the (1) Username and (2) Password parameters, as reachable from Employee/emp_login.asp. NOTE: some of these details are obtained from third p...
Preproject Pre Asp Job Board -
1 EDB exploit
7.5
CVSSv2
CVE-2007-0224
SQL injection vulnerability in shopgiftregsearch.asp in VP-ASP Shopping Cart 6.09 and previous versions allows remote malicious users to execute arbitrary SQL commands via the LoginLastname parameter.
Virtual Programming Vp-asp 6.09
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »