16 matches found
D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17698)
The D-Link DI-8003 is a wireless router from China-based AUO D-Link. A buffer overflow vulnerability exists in the D-Link DI-8003. The vulnerability is caused due to incorrect boundary checking in the user.asp script and can be exploited by an attacker to cause a denial of service...
EUVD-2025-209341
A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the customerror parameter in the /user.asp endpoint...
CVE-2025-50659
A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the customerror parameter in the /user.asp endpoint...
D-Link DI-8003 安全漏洞
The D-Link DI-8003 is a wireless router from China-based AUO D-Link. A buffer overflow vulnerability exists in the D-Link DI-8003. The vulnerability is caused due to incorrect boundary checking in the user.asp script and can be exploited by an attacker to cause a denial of service...
CVE-2025-50659
Affected product: D-Link DI-8003 (firmware 16.07.26A1). Vulnerability: a buffer overflow in /user.asp caused by improper handling of the custom_error parameter. Impact (per sources): availability impact high; authentication and confidentiality/integrity not affected. Attack vector: network, no us...
Yidacms v3.2 /Yidacms/user/user.asp 远程密码修改漏洞
No description provided by source...
ASP EDGE <= 1.2b (user.asp) Remote SQL Injection Vulnerability
No description provided by source. Title : ASP EDGE = V1.2b user.asp Remote SQL Injection Vulnerability Author : ajann Contact : : S.Page : http://aspedge.cjb.net || http://www.planetsourcecode.com/vb/scripts/ShowCode.asp?txtCodeId=7530&lngWId=4 $$ : Free...
CVE-2008-5889
Cross-site scripting XSS vulnerability in user.asp in Click&Rank allows remote attackers to inject arbitrary web script or HTML via the action parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in user.asp in Click&Rank allows remote attackers to inject arbitrary web script or HTML via the action parameter...
CVE-2008-5889
The CVE-2008-5889 entry describes a Cross-site scripting (XSS) vulnerability in Click&Rank’s user.asp, exploitable via the action parameter. The vulnerability is reflected/script-injected through user input, with a CVSSv2 base score of 4.3 (Medium) and no authentication required, according to NVD...
Sql injection
SQL injection vulnerability in user.asp in ASP EDGE 1.2b and earlier allows remote attackers to execute arbitrary SQL commands via the user parameter...
CVE-2007-0560
SQL injection vulnerability in user.asp in ASP EDGE 1.2b and earlier allows remote attackers to execute arbitrary SQL commands via the user parameter...
CVE-2007-0560
CVE-2007-0560 describes an SQL injection vulnerability in user.asp for ASP EDGE versions 1.2b and earlier, exploitable remotely via the user parameter. The flaw allows an attacker to inject arbitrary SQL commands, potentially impacting confidentiality and integrity and enabling partial availabili...
ASP Edge User.ASP SQL注入漏洞
ASP EDGE是一款基于ASP的WEB应用程序。 ASP EDGE不正确过滤用户提交的输入,远程攻击者可以利用漏洞进行SQL注入攻击,获得敏感信息。 问题是'User.ASP'脚本对用户提交的'user'参数缺少过滤,提交恶意SQL脚本代码作为参数数据,可更改原来的SQL逻辑,导致获得敏感信息。 ASP EDGE 1.2b 目前没有详细解决方案提供: http://www.planetsourcecode.com/vb/scripts/ShowCode.asp?txtCodeId=7530&lngWId=4...
ASP EDGE <= 1.2b (user.asp) Remote SQL Injection Vulnerability
No description provided by source. Title : ASP EDGE = V1.2b user.asp Remote SQL Injection Vulnerability Author : ajann Contact : : S.Page : http://aspedge.cjb.net || http://www.planetsourcecode.com/vb/scripts/ShowCode.asp?txtCodeId=7530&lngWId=4 $$ : Free...
ASP EDGE <= V1.2b (user.asp) Remote SQL Injection Vulnerability
Title : ASP EDGE = V1.2b user.asp Remote SQL Injection Vulnerability Author : ajann Contact : : S.Page : http://aspedge.cjb.net || http://www.planetsourcecode.com/vb/scripts/ShowCode.asp?txtCodeId=7530&lngWId=4 $$ : Free SQL---------------------------------------------------------...