Description
Multiple SQL injection vulnerabilities in ASPMForum allow remote attackers to execute arbitrary SQL commands via the (1) harf parameter in kullanicilistesi.asp and (2) baslik parameter in forum.asp.
Exploits (2)
exploitdb
WRITEUP
VERIFIED
by dj_eyes2005 · textwebappsasp
https://www.exploit-db.com/exploits/26760
exploitdb
WRITEUP
VERIFIED
by dj_eyes2005 · textwebappsasp
https://www.exploit-db.com/exploits/26759
References (6)
Core 6
Core References
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2005/2809
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/15767
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/23535
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/21539
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/17954
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/21538
Scores
EPSS
0.0103
EPSS Percentile
77.4%
Details
Status
published
Products (1)
aspmforum/aspmforum
Published
Dec 09, 2005
Tracked Since
Feb 18, 2026