Vulnerabilities > Aspthai NET
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-07-23 | CVE-2008-6872 | Information Exposure vulnerability in Aspthai.Net Aspthai Forums 8.5 ASPThai.NET ASPThai Forums 8.5 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for database/aspthaiForum.mdb. | 5.0 |
2009-02-23 | CVE-2009-0703 | SQL Injection vulnerability in Aspthai.Net Webboard 6.0 SQL injection vulnerability in bview.asp in ASPThai.Net Webboard 6.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |
2006-02-01 | CVE-2006-0490 | SQL Injection vulnerability in ASPThai Forums Login.ASP SQL injection vulnerability in login.asp in ASPThai.Net ASPThai Forums 8.0 and earlier allows remote attackers to execute arbitrary SQL commands and bypass login authentication via the password field. | 7.5 |