Codetoad: Security Vulnerabilities
SQL injection vulnerability in messages.asp in ASP Forum Script allows remote attackers to execute arbitrary SQL commands via the message_id parameter.
CVSS Score
7.5
EPSS Score
0.003
Published
2009-08-03
Multiple cross-site scripting (XSS) vulnerabilities in ASP Forum Script allow remote attackers to inject arbitrary web script or HTML via the (1) forum_id parameter to (a) new_message.asp and (b) messages.asp, and the (2) query string to default.asp.
CVSS Score
4.3
EPSS Score
0.006
Published
2009-08-03
Cross-site scripting (XSS) vulnerability in CodeToad ASP Shopping Cart Script allows remote attackers to inject arbitrary web script or HTML via the query string to the default URI.
CVSS Score
4.3
EPSS Score
0.023
Published
2009-03-20