Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asp vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-5154
Session fixation vulnerability in Aipo and Aipo ASP 3.0.1.0 and previous versions allows remote malicious users to hijack web sessions via unspecified vectors.
Aimluck Aipo Asp
Aimluck Aipo
NA
CVE-2007-3989
Multiple cross-site scripting (XSS) vulnerabilities in default.asp in Dora Emlak 1.0, when the goster parameter is set to iletisim, allow remote malicious users to inject arbitrary web script or HTML via the (1) Adiniz and (2) Soyadiniz parameters; and possibly other unspecified ...
Asp Indir Dora Emlak 1.0
1 EDB exploit
NA
CVE-2007-4252
Absolute path traversal vulnerability in a certain ActiveX control in CkString.dll 1.1 and previous versions in CHILKAT ASP String allows remote malicious users to create or overwrite arbitrary files via a full pathname in the first argument to the SaveToFile method, a different ...
Chilkat Software Asp String 1.1
1 EDB exploit
NA
CVE-2005-4256
Cross-site scripting (XSS) vulnerability in forum.asp in ASP-DEV XM Forum RC3 allows remote malicious users to inject arbitrary web script or HTML via the forum_title parameter. NOTE: the provenance of this issue is unknown; the details are obtained solely from the BID. In additi...
Asp-dev Xm Forum Rc3
1 EDB exploit
NA
CVE-2008-6494
ASP User Engine.NET stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for users.mdb.
Robs-projects Asp User Engine.net -
1 EDB exploit
NA
CVE-2008-6500
Cross-site scripting (XSS) vulnerability in CodeToad ASP Shopping Cart Script allows remote malicious users to inject arbitrary web script or HTML via the query string to the default URI.
Codetoad Asp Shopping Cart Script
1 EDB exploit
NA
CVE-2004-2123
Multiple cross-site scripting (XSS) vulnerabilities in Nextplace.com E-Commerce ASP Engine allow remote malicious users to inject arbitrary web script or HTML via the (1) level parameter of productdetail.asp, (2) searchKey parameter of searchresults.asp, and possibly (3) level pa...
Nextplace E-commerce Asp Engine
NA
CVE-2010-1370
SQL injection vulnerability in detailad.asp in Pre Classified Listings ASP allows remote malicious users to execute arbitrary SQL commands via the siteid parameter.
Preprojects Pre Classified Listings Asp
NA
CVE-2010-1371
Cross-site scripting (XSS) vulnerability in signup.asp in Pre Classified Listings ASP allows remote malicious users to inject arbitrary web script or HTML via the address parameter.
Preprojects Pre Classified Listings Asp
NA
CVE-2007-5887
SQL injection vulnerability in boards/printer.asp in ASP Message Board 2.2.1c allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Infuseum Asp Message Board 2.2.1c
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »