Aspapps Template Creature vulnerabilities
2 known vulnerabilities affecting aspapps/template_creature.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2008-5950P3HIGHCVSS 7.5PoCv_nil_2009-01-23
CVE-2008-5950 [HIGH] CWE-89 CVE-2008-5950: SQL injection vulnerability in media/media_level.asp in ASP Template Creature allows remote attacker
SQL injection vulnerability in media/media_level.asp in ASP Template Creature allows remote attackers to execute arbitrary SQL commands via the mcatid parameter.
nvd
CVE-2008-5951P3MEDIUMCVSS 5.0PoCv_nil_2009-01-23
CVE-2008-5951 [MEDIUM] CWE-264 CVE-2008-5951: ASP Template Creature stores sensitive information under the web root with insufficient access contr
ASP Template Creature stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request for workDB/templatemonster.mdb.
nvd