Vulnerabilities (CVE)

Filtered by vendor Aspthai.net Subscribe
Filtered by product Aspthai Forums
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-6872 1 Aspthai.net 1 Aspthai Forums 2024-11-21 5.0 MEDIUM N/A
ASPThai.NET ASPThai Forums 8.5 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for database/aspthaiForum.mdb.
CVE-2006-0490 1 Aspthai.net 1 Aspthai Forums 2024-11-21 7.5 HIGH N/A
SQL injection vulnerability in login.asp in ASPThai.Net ASPThai Forums 8.0 and earlier allows remote attackers to execute arbitrary SQL commands and bypass login authentication via the password field.