5 matches found
EUVD-2008-5250
Malware in sbrugna...
CVE-2008-6739
CVE-2008-6739 affects Todd Woolums ASP Download management script 1.03. The issue is that setupdownload.asp does not require authentication, allowing a remote attacker to obtain administrator privileges via a direct request. The documented impact is elevation to administrator access, with exploit...
CVE-2008-5274
CVE-2008-5274 affects Todd Woolums ASP News Management 2.2. The vulnerability allows remote attackers to obtain news items via direct requests to (1) rss.asp, (2) viewheadings.asp, or (3) viewnews.asp). The underlying issue is information disclosure through access to these pages, resulting in par...
CVE-2008-4511
Todd Woolums ASP News Management, possibly 2.21, stores db/news.mdb under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request...
CVE-2008-4511
CVE-2008-4511 concerns Todd Woolums ASP News Management, version likely 2.21, which stores db/news.mdb under the web root with insufficient access control. The described vulnerability enables remote attackers to obtain sensitive information via a direct request, indicating a confidentiality impac...