Lucene search
K

6 matches found

Cvelist
Cvelist
added 2011/12/30 1:0 a.m.36 views

CVE-2011-3415

Open redirect vulnerability in the Forms Authentication feature in the ASP.NET subsystem in Microsoft .NET Framework 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted return URL, aka "Insecure Redirect in...

6.4AI score0.24138EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2011/06/15 12:0 a.m.39 views

Microsoft .NET Framework Remote Code Execution Vulnerability (2538814)

This host is missing a critical security update according to Microsoft Bulletin MS11-044. OpenVAS Vulnerability Test $Id: secpodms11-044.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft .NET Framework Remote Code Execution Vulnerability 2538814 Authors: Sooraj KS Copyright: Copyright c 2011 SecPod,...

5.1CVSS0.5AI score0.20096EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2010/08/11 12:0 a.m.41 views

Microsoft .NET Common Language Runtime Remote Code Execution Vulnerability (2265906)

This host is missing a critical security update according to Microsoft Bulletin MS10-060. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS5AI score0.25033EPSS
Exploits1References5
NVD
NVD
added 2009/08/12 5:30 p.m.38 views

CVE-2009-1536

ASP.NET in Microsoft .NET Framework 2.0 SP1 and SP2 and 3.5 Gold and SP1, when ASP 2.0 is used in integrated mode on IIS 7.0, does not properly manage request scheduling, which allows remote attackers to cause a denial of service daemon outage via a series of crafted HTTP requests, aka "Remote...

2.6CVSS6.4AI score0.51316EPSS
Exploits1References9
NVD
NVD
added 2006/10/10 9:7 p.m.29 views

CVE-2006-3436

Cross-site scripting XSS vulnerability in Microsoft .NET Framework 2.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving "ASP.NET controls that set the AutoPostBack property to true"...

4.3CVSS5.5AI score0.37536EPSS
Exploits0References9
CVE
CVE
added 2006/10/10 9:0 p.m.61 views

CVE-2006-3436

CVE-2006-3436 is a Microsoft .NET Framework 2.0 ASP.NET XSS vulnerability. The flaw affects ASP.NET controls that set AutoPostBack to true, allowing an attacker to inject client-side script via HTTP requests and potentially cause information disclosure or browser-side actions. Exploitation report...

4.3CVSS5.4AI score0.37536EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder