Aspthai.net: >> Aspthai Forums Security Vulnerabilities
ASPThai.NET ASPThai Forums 8.5 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for database/aspthaiForum.mdb.
CVSS Score
5.0
EPSS Score
0.036
Published
2009-07-23
SQL injection vulnerability in login.asp in ASPThai.Net ASPThai Forums 8.0 and earlier allows remote attackers to execute arbitrary SQL commands and bypass login authentication via the password field.
CVSS Score
7.5
EPSS Score
0.031
Published
2006-02-01