Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asp vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2007-0632
SQL injection vulnerability in artreplydelete.asp in ASP EDGE 1.3a and previous versions allows remote malicious users to execute arbitrary SQL commands via a username cookie, a different vector than CVE-2007-0560.
Asp Edge Asp Edge
755
VMScore
CVE-2005-2067
SQL injection vulnerability in article.asp in unknown versions of aspnuke allows remote malicious users to execute arbitrary SQL commands via the articleid parameter.
Asp-nuke Asp-nuke
1 EDB exploit
755
VMScore
CVE-2006-6070
SQL injection vulnerability in module/account/register/register.asp in ASP Nuke 0.80 and previous versions allows remote malicious users to execute arbitrary SQL commands via the StateCode parameter.
Asp-nuke Asp-nuke
1 EDB exploit
445
VMScore
CVE-2007-5260
ASP-CMS 1.0 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database containing the username and password via a direct request for mdb-database/ASP-CMS_v100.mdb.
Asp-cms Asp-cms 1.0
668
VMScore
CVE-2005-4165
Multiple SQL injection vulnerabilities in ASP-DEV ASP Resources Forum allow remote malicious users to execute arbitrary SQL commands via the (1) forum_id parameter to forum.asp, (2) unspecified parameters to register.asp, and (3) the "Search For" field in search.asp.
Asp-dev Asp Resources Forum
505
VMScore
CVE-2005-2065
HTTP response splitting vulnerability in language_select.asp in ASP Nuke 0.80 allows remote malicious users to spoof web content and poison web caches via CRLF ("%0d%0a") sequences in the LangCode parameter.
Asp-nuke Asp-nuke 0.80
1 EDB exploit
755
VMScore
CVE-2006-5952
SQL injection vulnerability in admin/default.asp in ASP Smiley 1.0 allows remote malicious users to execute arbitrary SQL commands via the Username field.
Asp Smiley Asp Smiley 1.0
1 EDB exploit
435
VMScore
CVE-2007-2892
Cross-site scripting (XSS) vulnerability in news.asp in ASP-Nuke 2.0.7 allows remote malicious users to inject arbitrary web script or HTML via the id parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Asp-nuke Asp-nuke 2.0.7
1 EDB exploit
755
VMScore
CVE-2005-3931
SQL injection vulnerability in default.asp in ASP-Rider 1.6 allows remote malicious users to execute arbitrary SQL commands via the HTTP referer.
Asp-rider Asp-rider 1.6
1 EDB exploit
755
VMScore
CVE-2009-0280
Asp Project Management 1.0 allows remote malicious users to bypass authentication and gain administrative access by setting the crypt cookie to 1.
Asp-project Asp-project 1.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »