Vulnerabilities > ASP Nuke
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-08-12 | CVE-2002-0522 | Authentication Credentials User Account Compromise vulnerability in ASP-Nuke Plaintext Cookie ASP-Nuke RC2 and earlier allows remote attackers to bypass authentication and gain privileges by modifying the "pseudo" cookie. | 7.5 |
2002-08-12 | CVE-2002-0521 | Cross-Site Scripting vulnerability in ASP-Nuke Cross-site scripting vulnerabilities in ASP-Nuke RC2 and earlier allow remote attackers to execute script or gain privileges as other ASP-Nuke users via script in (1) the name parameter in downloads.asp, (2) the message parameter in Post.asp, or (3) a web site URL in profile.asp. | 5.1 |
2002-08-12 | CVE-2002-0520 | Unspecified vulnerability in Asp-Nuke RC1 Cross-site scripting vulnerability in functions-inc.asp for ASP-Nuke RC1 allows remote attackers to execute script as other ASP-Nuke users by embedding it within an IMG tag. | 7.5 |