Vulnerabilities > THE NET Guys

DATE	CVE	VULNERABILITY TITLE	RISK
2009-01-21	CVE-2008-5931	Permissions, Privileges, and Access Controls vulnerability in the NET Guys Aspired2Blog The Net Guys ASPired2Blog stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing usernames and passwords via a direct request for admin/blog.mdb. network low complexity the-net-guys CWE-264	5.0
2009-01-21	CVE-2008-5930	SQL Injection vulnerability in the NET Guys Aspired2Blog SQL injection vulnerability in admin/blog_comments.asp in The Net Guys ASPired2Blog allows remote attackers to execute arbitrary SQL commands via the BlogID parameter. network low complexity the-net-guys CWE-89	7.5
2008-01-30	CVE-2008-0487	SQL Injection vulnerability in the NET Guys Aspired2Protect Multiple SQL injection vulnerabilities in login.asp in ASPired2Protect allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters. network low complexity the-net-guys CWE-89	7.5
2006-11-14	CVE-2006-5892	SQL Injection vulnerability in Aspired2Poll MoreInfo.ASP SQL injection vulnerability in MoreInfo.asp in The Net Guys ASPired2Poll 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. network low complexity the-net-guys	7.5

Vulnerabilities > THE NET Guys {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"THE NET Guys"}]}