Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asp vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-3032
Multiple cross-site scripting (XSS) vulnerabilities in Xtreme ASP Photo Gallery 1.05 and previous versions, and possibly 2.0 (trial), allow remote malicious users to inject arbitrary web script or HTML via the (1) catname and (2) total parameters in (a) displaypic.asp, and the (3...
Pensacola Web Designs Xtreme Asp Photo Gallery 1.05
Pensacola Web Designs Xtreme Asp Photo Gallery 2.0
NA
CVE-2008-6890
SQL injection vulnerability in messages.asp in ASP Forum Script allows remote malicious users to execute arbitrary SQL commands via the message_id parameter.
Codetoad Asp Forum Script
1 EDB exploit
NA
CVE-2006-6210
SQL injection vulnerability in listpics.asp in ASP ListPics 5.0 allows remote malicious users to execute arbitrary SQL commands via the ID parameter.
Iisworks Asp Listpics 5.0
1 EDB exploit
NA
CVE-2008-5595
SQL injection vulnerability in detail.asp in ASP AutoDealer allows remote malicious users to execute arbitrary SQL commands via the ID parameter.
Aspapps Asp Autodealer Nil
1 EDB exploit
NA
CVE-2008-5608
ASP AutoDealer stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file via a direct request for auto.mdb.
Aspapps Asp Autodealer Nil
2 EDB exploits
NA
CVE-2012-4060
Multiple SQL injection vulnerabilities in ASP-DEv XM Forums RC3 allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) profile.asp, (2) forum.asp, or (3) topic.asp.
Asp-dev Xm Forums -
1 EDB exploit
NA
CVE-2012-4061
Multiple SQL injection vulnerabilities in ASP-DEv XM Diary allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter to diary_view.asp or (2) view_date parameter to default.asp.
Asp-dev Xm Diary
NA
CVE-2007-0951
SQL injection vulnerability in listmain.asp in Fullaspsite ASP Hosting Site allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Fullaspsite Asp Hosting Site
1 EDB exploit
NA
CVE-2007-3158
download_script.asp in ASP Folder Gallery allows remote malicious users to read arbitrary files via a filename in the file parameter.
Tenyearsgone Asp Folder Gallery
1 EDB exploit
NA
CVE-2007-0678
SQL injection vulnerability in windows.asp in Fullaspsite Asp Hosting Sitesi allows remote malicious users to execute arbitrary SQL commands via the kategori_id parameter.
Fullaspsite Asp Hosting Site
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »