CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Instantasp: >> Instantasp Security Vulnerabilities

CVE-2007-0302

Multiple cross-site scripting (XSS) vulnerabilities in InstantASP 4.1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) SessionID parameter to (a) Logon.aspx, and the (2) Username and (3) Update parameters to (b) Members1.aspx.

CVSS Score

6.8

EPSS Score

0.057

Published

2007-01-18

Page 1

Vulnerabilities

Vulnerable Software

Instantasp: >> Instantasp Security Vulnerabilities

Products

Pricing

Contact Us