Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asp.net vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2018-8171
A Security Feature Bypass vulnerability exists in ASP.NET when the number of incorrect login attempts is not validated, aka "ASP.NET Security Feature Bypass Vulnerability." This affects ASP.NET, ASP.NET Core 1.1, ASP.NET Core 1.0, ASP.NET Core 2.0, ASP.NET MVC 5.2.
Microsoft Asp.net Model View Controller 5.2
Microsoft Asp.net Webpages 3.2.3
Microsoft Asp.net Core 2.0
Microsoft Asp.net Core 1.1
Microsoft Asp.net Core 1.0
445
VMScore
CVE-2017-8700
ASP.NET Core 1.0, 1.1, and 2.0 allow an malicious user to bypass Cross-origin Resource Sharing (CORS) configurations and retrieve normally restricted content from a web application, aka "ASP.NET Core Information Disclosure Vulnerability".
Microsoft Asp.net Core 1.0
Microsoft Asp.net Core 1.1
Microsoft Asp.net Core 2.0
1 Article
445
VMScore
CVE-2018-0808
ASP.NET Core 1.0. 1.1, and 2.0 allow an elevation of privilege vulnerability due to how ASP.NET web applications handle web requests, aka "ASP.NET Core Elevation Of Privilege Vulnerability". This CVE is unique from CVE-2018-0784.
Microsoft Asp.net Core 1.1
Microsoft Asp.net Core 1.0
Microsoft Asp.net Core 2.0
1 Article
606
VMScore
CVE-2019-1302
An elevation of privilege vulnerability exists when a ASP.NET Core web application, created using vulnerable project templates, fails to properly sanitize web requests, aka 'ASP.NET Core Elevation Of Privilege Vulnerability'.
Microsoft Asp.net Core 2.1
Microsoft Asp.net Core 3.0
Microsoft Asp.net Core 2.2
2 Github repositories
1 Article
605
VMScore
CVE-2018-0787
ASP.NET Core 1.0. 1.1, and 2.0 allow an elevation of privilege vulnerability due to how web applications that are created from templates validate web requests, aka "ASP.NET Core Elevation Of Privilege Vulnerability".
Microsoft Asp.net Core 1.0
Microsoft Asp.net Core 2.0
Microsoft Asp.net Core 1.1
383
VMScore
CVE-2013-5042
Cross-site scripting (XSS) vulnerability in Microsoft ASP.NET SignalR 1.1.x prior to 1.1.4 and 2.0.x prior to 2.0.1, and Visual Studio Team Foundation Server 2013, allows remote malicious users to inject arbitrary web script or HTML via crafted Forever Frame transport protocol da...
Microsoft Asp.net Signalr 1.1.3
Microsoft Asp.net Signalr 1.1.0
Microsoft Asp.net Signalr 2.0.0
Microsoft Asp.net Signalr 1.1.2
Microsoft Asp.net Signalr 1.1.1
Microsoft Visual Studio Team Foundation Server 2013
755
VMScore
CVE-2004-0847
The Microsoft .NET forms authentication capability for ASP.NET allows remote malicious users to bypass authentication for .aspx files in restricted directories via a request containing a (1) "\" (backslash) or (2) "%5C" (encoded backslash), aka "Path Vali...
Microsoft Asp.net 1.1
Microsoft Asp.net
1 EDB exploit
785
VMScore
CVE-2006-1364
Microsoft w3wp (aka w3wp.exe) does not properly handle when the AspCompat directive is not used when referencing COM components in ASP.NET, which allows remote malicious users to cause a denial of service (resource consumption or crash) by repeatedly requesting each of several do...
Microsoft Asp.net 1.1
Microsoft Asp.net
1 EDB exploit
445
VMScore
CVE-2005-1665
The __VIEWSTATE functionality in Microsoft ASP.NET 1.x, when not cryptographically signed, allows remote malicious users to cause a denial of service (CPU consumption) via deeply nested markup.
Microsoft Asp.net 1.0
Microsoft Asp.net 1.1
570
VMScore
CVE-2005-1664
The __VIEWSTATE functionality in Microsoft ASP.NET 1.x allows remote malicious users to conduct replay attacks to (1) apply a ViewState generated from one view to a different view, (2) reuse ViewState information after the application's state has changed, or (3) use the View...
Microsoft Asp.net 1.0
Microsoft Asp.net 1.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »