Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aspindir vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2010-4856
SQL injection vulnerability in arsiv.asp in xWeblog 2.2 allows remote malicious users to execute arbitrary SQL commands via the tarih parameter.
Aspindir Xweblog 2.2
1 EDB exploit
7.5
CVSSv2
CVE-2010-4855
SQL injection vulnerability in oku.asp in xWeblog 2.2 allows remote malicious users to execute arbitrary SQL commands via the makale_id parameter.
Aspindir Xweblog 2.2
1 EDB exploit
7.5
CVSSv2
CVE-2010-4144
SQL injection vulnerability in radyo.asp in Kisisel Radyo Script allows remote malicious users to execute arbitrary SQL commands via the Id parameter.
Aspindir Kisisel Radyo Script
1 EDB exploit
5
CVSSv2
CVE-2010-4145
Kisisel Radyo Script stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for sevvo/eco23.mdb.
Aspindir Kisisel Radyo Script
1 EDB exploit
5
CVSSv2
CVE-2010-1736
KrM Haber 1.0 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for d_atabase/Krmdb.mdb.
Aspindir Krm Haber 1.0
5
CVSSv2
CVE-2009-4820
Angelo-Emlak 1.0 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for veribaze/angelo.mdb.
Aspindir Angelo-emlak 1.0
1 EDB exploit
5
CVSSv2
CVE-2010-1116
LookMer Music Portal stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for dbmdb/LookMerSarkiMDB.mdb.
Aspindir Lookmer Muzik Portal
5
CVSSv2
CVE-2010-1064
Erolife AjxGaleri VT stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for db/ajxgaleri.mdb.
Aspindir Erolife Ajxgaleri Vt
1 EDB exploit
5
CVSSv2
CVE-2009-4585
UranyumSoft Listing Service stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for database/db.mdb.
Aspindir Uranyumsoft Listing Service
1 EDB exploit
7.5
CVSSv2
CVE-2008-6640
Multiple SQL injection vulnerabilities in BatmanPorTaL allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) uyeadmin.asp and (2) profil.asp. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
Aspindir Batmanportal
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »