Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asp vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-5952
SQL injection vulnerability in admin/default.asp in ASP Smiley 1.0 allows remote malicious users to execute arbitrary SQL commands via the Username field.
Asp Smiley Asp Smiley 1.0
1 EDB exploit
NA
CVE-2002-0520
Cross-site scripting vulnerability in functions-inc.asp for ASP-Nuke RC1 allows remote malicious users to execute script as other ASP-Nuke users by embedding it within an IMG tag.
Asp-nuke Asp-nuke Rc1
NA
CVE-2009-0280
Asp Project Management 1.0 allows remote malicious users to bypass authentication and gain administrative access by setting the crypt cookie to 1.
Asp-project Asp-project 1.0
1 EDB exploit
NA
CVE-2005-4165
Multiple SQL injection vulnerabilities in ASP-DEV ASP Resources Forum allow remote malicious users to execute arbitrary SQL commands via the (1) forum_id parameter to forum.asp, (2) unspecified parameters to register.asp, and (3) the "Search For" field in search.asp.
Asp-dev Asp Resources Forum
NA
CVE-2007-2892
Cross-site scripting (XSS) vulnerability in news.asp in ASP-Nuke 2.0.7 allows remote malicious users to inject arbitrary web script or HTML via the id parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Asp-nuke Asp-nuke 2.0.7
1 EDB exploit
NA
CVE-2005-0802
Cross-site scripting (XSS) vulnerability in search.asp in ACS Blog 0.8 up to and including 1.1b allows remote malicious users to execute arbitrary web script or HTML via the search parameter.
Asp Press Acs Blog 1.0
Asp Press Acs Blog 1.1b
Asp Press Acs Blog 0.8
Asp Press Acs Blog 0.9
1 EDB exploit
NA
CVE-2000-0628
The source.asp example script in the Apache ASP module Apache::ASP 1.93 and previous versions allows remote malicious users to modify files.
Joshua Chamas Apache Asp 0.16
Joshua Chamas Apache Asp 0.17
Joshua Chamas Apache Asp 0.18
Joshua Chamas Apache Asp 1.93
NA
CVE-2006-3580
SQL injection vulnerability in pages.asp in ASP Stats Generator prior to 2.1.2 allows remote malicious users to execute arbitrary SQL commands via the order parameter.
Asp Stats Generator Asp Stats Generator
1 EDB exploit
NA
CVE-2006-3184
Direct static code injection vulnerability in ASP Stats Generator prior to 2.1.2 allows remote authenticated malicious users to execute arbitrary ASP code via the strAsgSknPageBgColour parameter to settings_skin.asp, which is stored in inc_skin_file.asp.
Asp Stats Generator Asp Stats Generator
1 EDB exploit
NA
CVE-2007-2790
Cross-site scripting (XSS) vulnerability in shopcontent.asp in VP-ASP Shopping Cart 6.50, and possibly earlier, allows remote malicious users to inject arbitrary web script or HTML via the type parameter.
Vp-asp Vp-asp Shopping Cart
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »