CVE-2023-20599

Improper register access control in ASP may allow a privileged attacker to perform unauthorized access to ASP’s Crypto Co-Processor CCP registers from x86 resulting in potential loss of control of cryptographic key pointer/index leading to loss of integrity or confidentiality...

CVE-2023-20599

Improper register access control in ASP may allow a privileged attacker to perform unauthorized access to ASP’s Crypto Co-Processor CCP registers from x86 resulting in potential loss of control of cryptographic key pointer/index leading to loss of integrity or confidentiality...

CVE-2023-20566

Improper address validation in ASP with SNP enabled may potentially allow an attacker to compromise guest memory integrity...

CVE-2023-20520

Improper access control settings in ASP Bootloader may allow an attacker to corrupt the return address causing a stack-based buffer overrun potentially leading to arbitrary code execution...

5UCMS <= v1. 2. 2 0 2 4 background not validation and SQL injection-vulnerability warning-the black bar safety net

Brief description: The background file does not do verification, it has been filtered does not strictly lead toSQL injection Detailed description: File location admin/ajax. asp 2 4 row Case "modeext" .. 2 6 row ecid=ReplaceRequest"cid","'","" 2 7 row cid=ReplaceRequest"id","'","" .. .. 3 1 The li...

ASP Action Calendar 1.3 SQL Injection

Founded By : SuB-ZeRo WaLiD E-mail : [email protected] Home : WwW.dz-security.Net GreeTZ : D-unit & X.CJP.x & www.dz-security.net & gaza --------------------------------------------------------- vondor : www.warrenstudios.com --------------------------------------------------------- Exploit Auth...

MiniNuke 2.1 - &#039;uid&#039; SQL Injection

MiniNuke v2.1 forum SQL Injection AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAÄ°L : [email protected] DORK 1 : allinurl:"members.asp?action" DORK 2 : allinurl: "members.asp"uid EXAMPLE= members.asp?action=memberdetails&uid=SQL exploit EXPLOIT 1 :...

China computer education web site management system 3. 0 vulnerability analysis-vulnerability warning-the black bar safety net

In the/edit/downfile. asp has the following code: Copy code !-- include file="fsoconfig. asp" - !-- include file="checklogin. asp" - % call downloadFileRequest"path" function downloadFilestrFile strFilename = server. MapPathstrFile Response. Buffer = True Response. Clear Set s = Server...

Daily web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

Hack resources:-vulnerability warning-the black bar safety net

Detecting virtual host to the actual situation Software name: ASP security detection probe Software size: 2 8 KB Whether it is preparing for the invasion or to detect the virtual host security, in order to learn their weaknesses, and then take the corresponding countermeasures. Using“ASP security...

PHP, ASP, CGI web applications security vulnerabilities

No description provided...

PHP, ASP, CGI web applications security vulnerabilities

PHP inclusions, SQL injections, directory traversals, crossite scripting, etc...

PHP/ASP/CGI web applications security bugs

PHP inclusions, SQL injections, directory traversals, crossite scripting, spam sending, etc...

PHP/ASP/CGI web applications security bugs

PHP inclusions, SQL injections, directory traversals, crossite scripting, etc...

PHP/ASP/CGI web applications security vulnerabilities

PHP inclusions, SQL injections, directory traversals, crossite scripting, etc...

Virtual Programming VP-ASP 5.00 - shopexd.asp SQL Injection (1)

Virtual Programming VP-ASP 5.00 - shopexd.asp SQL Injection 1 source: https://www.securityfocus.com/bid/8159/info It has been reported that VP-ASP does not sufficiently sanitize user input passed to the shopexd.asp script contained in the software. As a result, it may be possible for remote...

LinkMax.txt

---------------------------------------------------------- Release date: May 21th 2001 Subject: WebAvail LinkMax2 ASP security problem Systems affected: All systems running LinkMax2 ASP script Vendor: http://www.webavail.com ---------------------------------------------------------- 1. problem...

Security hole in ChiliSoft ASP on Linux.

Security hole in ChiliSoft ASP for Linux. Overview: ASP Active Server Pages are a technology initially developed by Microsoft to tackle the "dynamic content on the web" problem. Chili!Soft is a company that has released a piece of software called Chili!Soft ASP that makes ASP functionality...

asp.runtime-error.txt

Forwarded with permission of the author. Please direct all replies to [email protected]. Ben Greenbaum Director of Site Content Security Focus http://www.securityfocus.com ---------- Forwarded message ---------- Description: ============ Active server pages ASP with runtime errors expose a security...