Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asp vulnerabilities and exploits
(subscribe to this query)
760
VMScore
CVE-2004-1555
Multiple SQL injection vulnerabilities in BroadBoard Instant ASP Message Board allow remote malicious users to run arbitrary SQL commands via the (1) keywords parameter to search.asp, (2) handle parameter to profile.asp, (3) txtUserHandle parameter to reg2.asp or (4) txtUserEmail...
Broadboard Instant Asp Message Board
2 EDB exploits
755
VMScore
CVE-2006-4916
SQL injection vulnerability in uye_profil.asp in Tekman Portal (TR) 1.0 allows remote malicious users to execute arbitrary SQL commands via the uye_id parameter.
Asp Indir Tekman Portal 1.0
1 EDB exploit
1000
VMScore
CVE-2006-2807
ASPwebSoft Speedy Asp Discussion Forum allows remote malicious users to change the password of any account via a modified account id and possibly arbitrary values of the name, email, country, password, and passwordre parameters to profileupdate.asp.
Aspwebsoft Speedy Asp Discussion Forum
1 EDB exploit
435
VMScore
CVE-2005-4256
Cross-site scripting (XSS) vulnerability in forum.asp in ASP-DEV XM Forum RC3 allows remote malicious users to inject arbitrary web script or HTML via the forum_title parameter. NOTE: the provenance of this issue is unknown; the details are obtained solely from the BID. In additi...
Asp-dev Xm Forum Rc3
1 EDB exploit
755
VMScore
CVE-2009-2243
SQL injection vulnerability in active_appointments.asp in ASP Inline Corporate Calendar allows remote malicious users to execute arbitrary SQL commands via the sortby parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party ...
Aaronoutpost Asp Inline Corporate Calendar
1 EDB exploit
516
VMScore
CVE-2007-5154
Session fixation vulnerability in Aipo and Aipo ASP 3.0.1.0 and previous versions allows remote malicious users to hijack web sessions via unspecified vectors.
Aimluck Aipo Asp
Aimluck Aipo
435
VMScore
CVE-2008-6847
Cross-site scripting (XSS) vulnerability in Employee/emp_login.asp in Pre ASP Job Board allows remote malicious users to inject arbitrary web script or HTML via the msg parameter.
Preproject Pre Asp Job Board -
1 EDB exploit
505
VMScore
CVE-2009-2024
Vlad Titarenko ASP VT Auth 1.0 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file and obtain usernames and passwords via a direct request for zHk8dEes3.txt.
Vt.rovno Asp Vt Auth 1.0
1 EDB exploit
505
VMScore
CVE-2008-6494
ASP User Engine.NET stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for users.mdb.
Robs-projects Asp User Engine.net -
1 EDB exploit
435
VMScore
CVE-2008-6500
Cross-site scripting (XSS) vulnerability in CodeToad ASP Shopping Cart Script allows remote malicious users to inject arbitrary web script or HTML via the query string to the default URI.
Codetoad Asp Shopping Cart Script
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »