Vulnerabilities > Full Revolution > Aspweblinks > 2.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-06-06 | CVE-2006-2848 | Remote Security Bypass vulnerability in Full Revolution Aspweblinks 2.0 links.asp in aspWebLinks 2.0 allows remote attackers to change the administrative password, possibly via a direct request with a modified txtAdministrativePassword field. | 5.0 |
2006-06-06 | CVE-2006-2847 | SQL Injection vulnerability in Full Revolution Aspweblinks 2.0 SQL injection vulnerability in links.asp in aspWebLinks 2.0 allows remote attackers to execute arbitrary SQL commands via the linkID parameter. | 7.5 |