Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2010-2088

Published: 27/05/2010 Updated: 28/05/2010
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Asp.net

Vulnerability Summary

ASP.NET in Microsoft .NET 3.5 does not properly handle an unencrypted view state, which allows remote malicious users to conduct cross-site scripting (XSS) attacks against the form control via the __VIEWSTATE parameter.

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft asp.net 3.5

Github Repositories

https://github.com/mirai101/HADES

Advance scanner for config files left over, that may Contain usernames and passwords, also search for Cpanel, WordPress and WordPress plugins.

BETA HADES Advance scurity scanner for webserver vulnerabilities Features Beta release: search for Cpanel search for Sitemap search for WordPress Find WordPress plugins Find SQL Injection and Local File Inclusion (LFI) features for official release: Remote File Inclusion (RFI) CVE‑2010‑2088 Broken Authentication and Session Management Insecure Direct Object References C

References

CWE-79https://www.trustwave.com/spiderlabs/advisories/TWSL2010-001.txthttp://www.blackhat.com/presentations/bh-dc-10/Byrne_David/BlackHat-DC-2010-Byrne-SGUI-slides.pdfhttps://nvd.nist.govhttps://github.com/mirai101/HADES
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761command injectionCVE-2024-3676IDORCVE-2024-30039CVE-2024-32113CVE-2024-30049CVE-2024-4776SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook