Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aspportal vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-5879
SQL injection vulnerability in default1.asp in ASPPortal 4.0.0 beta and previous versions allows remote malicious users to execute arbitrary SQL commands via the Poll_ID parameter, a different vector than CVE-2006-1353.
Aspportal Aspportal 3.0.0
Aspportal Aspportal 3.1.0
Aspportal Aspportal 3.1.1
Aspportal Aspportal
1 EDB exploit
7.5
CVSSv2
CVE-2006-1353
Multiple SQL injection vulnerabilities in ASPPortal 3.1.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via (1) the downloadid parameter in download_click.asp and (2) content_ID parameter in news/News_Item.asp; authenticated administrators c...
Aspportal Aspportal 3.0.0
Aspportal Aspportal 3.1.0
Aspportal Aspportal 3.1.1
1 EDB exploit
5
CVSSv2
CVE-2008-6382
ASP Portal 3.2.5 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file via a direct request to ASPPortal.mdb.
Aspportal Aspportal 3.2.5
1 EDB exploit
4.3
CVSSv2
CVE-2006-1261
Multiple cross-site scripting (XSS) vulnerabilities in ASPPortal 3.00 allow remote malicious users to inject arbitrary web script or HTML via unknown attack vectors.
Aspportal Aspportal 3.0.0
7.5
CVSSv2
CVE-2006-1262
Multiple SQL injection vulnerabilities in ASPPortal 3.00 have unknown impact and attack vectors.
Aspportal Aspportal 3.0.0
7.5
CVSSv2
CVE-2008-5268
SQL injection vulnerability in content/forums/reply.asp in ASPPortal allows remote malicious users to execute arbitrary SQL commands via the Topic_Id parameter.
Aspportal Aspportal Free
1 EDB exploit
5
CVSSv2
CVE-2008-5562
ASPPortal stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file via a direct request for xportal.mdb.
Aspapps Aspportal Nil
1 EDB exploit
7.5
CVSSv2
CVE-2008-5605
Multiple SQL injection vulnerabilities in ASP Portal allow remote malicious users to execute arbitrary SQL commands via the (1) ItemID parameter to classifieds.asp and the (2) ID parameter to Events.asp.
Aspapps Aspportal Nil
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started