Multiple SQL injection vulnerabilities in AspTopSites allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to goto.asp or (2) password parameter to includeloginuser.asp.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.015
EPSS Ranking 70.6%