Vulnerabilities > ASP Press > ACS Blog > 1.0

DATE CVE VULNERABILITY TITLE RISK
2005-05-02 CVE-2005-1288 Remote Security vulnerability in ACS Blog
inc_login_check.asp ACS Blog 0.8 through 1.1.3 allows remote attackers to gain administrator privileges via the "in" value in a cookie.
network
low complexity
asp-press
7.5
7.5
2005-05-02 CVE-2005-0802 Cross-Site Scripting vulnerability in ACS Blog Search.ASP
Cross-site scripting (XSS) vulnerability in search.asp in ACS Blog 0.8 through 1.1b allows remote attackers to execute arbitrary web script or HTML via the search parameter.
network
asp-press
4.3
4.3