Filtered by vendor Activewebsoftwares Subscriptions
Total 27 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2008-6889 1 Activewebsoftwares 1 Aspreferral 2025-04-09 N/A
SQL injection vulnerability in Merchantsadd.asp in ASPReferral 5.3 allows remote attackers to execute arbitrary SQL commands via the AccountID parameter.
CVE-2008-5974 1 Activewebsoftwares 1 Active Price Comparison 2025-04-09 N/A
Multiple SQL injection vulnerabilities in login.aspx in Active Price Comparison 4.0 allow remote attackers to execute arbitrary SQL commands via the (1) password and (2) username fields.
CVE-2008-5973 1 Activewebsoftwares 1 Active Web Mail 2025-04-09 N/A
SQL injection vulnerability in login.aspx in Active Web Mail 4.0 allows remote attackers to execute arbitrary SQL commands via the password parameter.
CVE-2008-5635 1 Activewebsoftwares 1 Active Membership 2025-04-09 N/A
SQL injection vulnerability in account.asp in Active Membership 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters, possibly related to start.asp. NOTE: some of these details are obtained from third party information.
CVE-2009-0429 1 Activewebsoftwares 1 Active Bids 2025-04-09 N/A
Multiple SQL injection vulnerabilities in Active Bids allow remote attackers to execute arbitrary SQL commands via the (1) search parameter to search.asp, (2) SortDir parameter to auctionsended.asp, and the (3) catid parameter to wishlist.php.
CVE-2008-5640 1 Activewebsoftwares 1 Active Bids 2025-04-09 N/A
SQL injection vulnerability in bidhistory.asp in Active Bids 3.5 allows remote attackers to execute arbitrary SQL commands via the ItemID parameter.
CVE-2009-0430 1 Activewebsoftwares 1 Active Bids 2025-04-09 N/A
Multiple cross-site scripting (XSS) vulnerabilities in Active Bids allow remote attackers to inject arbitrary web script or HTML via the (1) search parameter to search.asp and the (2) URL parameter to tellafriend.asp.