CVE-2025-51683

A blind SQL Injection SQLi vulnerability in mJobtime v15.7.2 allows unauthenticated attackers to execute arbitrary SQL statements via a crafted POST request to the /Default.aspx/updateprofileServer endpoint...

EUVD-2025-200092

A blind SQL Injection SQLi vulnerability in mJobtime v15.7.2 allows unauthenticated attackers to execute arbitrary SQL statements via a crafted POST request to the /Default.aspx/updateprofileServer endpoint...

CVE-2025-51683

A blind SQL Injection SQLi vulnerability in mJobtime v15.7.2 allows unauthenticated attackers to execute arbitrary SQL statements via a crafted POST request to the /Default.aspx/updateprofileServer endpoint...

EUVD-2006-4959

Malware in sbrugna...

CVE-2025-27954

An issue in Clinical Collaboration Platform 12.2.1.5 allows a remote attacker to obtain sensitive information and execute arbitrary code via the usertoken function of default.aspx...

CVE-2022-45890

In Planet eStream before 6.72.10.07, a Reflected Cross-Site Scripting XSS vulnerability exists via any metadata filter field e.g., search within Default.aspx with the r or fo parameter...

CVE-2025-1806 Eastnets PaymentSafe URL Default.aspx improper authorization

A vulnerability, which was classified as problematic, has been found in Eastnets PaymentSafe 2.5.26.0. Affected by this issue is some unknown functionality of the file /Default.aspx of the component URL Handler. The manipulation leads to improper authorization. The attack may be launched remotely...

CVE-2022-45895

Planet eStream before 6.72.10.07 discloses sensitive information, related to the ON cookie findable in HTML source code for Default.aspx in some situations and the WhoAmI endpoint e.g., path disclosure...

Cross site scripting

In Planet eStream before 6.72.10.07, a Reflected Cross-Site Scripting XSS vulnerability exists via any metadata filter field e.g., search within Default.aspx with the r or fo parameter...

Cerner Mobile Care SQL注入漏洞

Cerner Mobile Care is connecting providers, clinical care teams and IT architects with patients. A security vulnerability exists in Cerner Mobile Care version 5.0.0 where an unauthenticated, remote attacker could execute arbitrary SQL commands via a full apostrophe in the default.aspx user ID fie...

CVE-2020-8788

Synaptive Medical ClearCanvas ImageServer 3.0 Alpha allows XSS and HTML injection via the Default.aspx UserName parameter. NOTE: the issues/227 reference does not imply that the affected product can be downloaded from GitHub. It was simply a convenient location for a public bug report...

CVE-2020-8788

Synaptive Medical ClearCanvas ImageServer 3.0 Alpha allows XSS and HTML injection via the Default.aspx UserName parameter. NOTE: the issues/227 reference does not imply that the affected product can be downloaded from GitHub. It was simply a convenient location for a public bug report...

Design/Logic Flaw

Synaptive Medical ClearCanvas ImageServer 3.0 Alpha allows XSS and HTML injection via the Default.aspx UserName parameter. NOTE: the issues/227 reference does not imply that the affected product can be downloaded from GitHub. It was simply a convenient location for a public bug report...

CVE-2020-8788

Synaptive Medical ClearCanvas ImageServer 3.0 Alpha allows XSS and HTML injection via the Default.aspx UserName parameter. NOTE: the issues/227 reference does not imply that the affected product can be downloaded from GitHub. It was simply a convenient location for a public bug report...

solomoncolors.com XSS vulnerability

Open Bug Bounty ID: OBB-611270 Description| Value ---|--- Affected Website:| solomoncolors.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

yoga.isport.com Open Redirect vulnerability

Open Bug Bounty ID: OBB-562606 Description| Value ---|--- Affected Website:| yoga.isport.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4...

iredeem.com XSS vulnerability

Open Bug Bounty ID: OBB-547424 Description| Value ---|--- Affected Website:| iredeem.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

www2.brasilprev.com.br XSS vulnerability

Vulnerable URL: http://www2.brasilprev.com.br/Busca/Paginas/default.aspx?k=" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 19.09.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check...

SQL injection vulnerability in the gid parameter of the Default.aspx page of the CMS system of the resource management platform of Beijing HBM Information Technology Co.

Resource Management Platform CMS is a comprehensive management and application platform based on the cloud service system, through a multi-layer system architecture, establishing a multi-level cloud platform and cloud application environment covering provinces, municipalities, counties, schools a...

CVE-2016-5048

SQL injection vulnerability in chat/staff/default.aspx in ReadyDesk 9.1 allows remote attackers to execute arbitrary SQL commands via the user name field...