RSS   Vulnerabilities for 'Asp stats generator'   RSS

2006-07-13
 
CVE-2006-3580

 

 
SQL injection vulnerability in pages.asp in ASP Stats Generator before 2.1.2 allows remote attackers to execute arbitrary SQL commands via the order parameter.

 
2006-06-22
 
CVE-2006-3184

 

 
Direct static code injection vulnerability in ASP Stats Generator before 2.1.2 allows remote authenticated attackers to execute arbitrary ASP code via the strAsgSknPageBgColour parameter to settings_skin.asp, which is stored in inc_skin_file.asp.

 


Copyright 2017, cxsecurity.com