CVE-2010-2516

Multiple SQL injection vulnerabilities in 2daybiz Multi Level Marketing (MLM) Software allow remote attackers to execute arbitrary SQL commands via the username parameter to (1) index.php and (2) admin/index.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
References
Link Resource
http://secunia.com/advisories/40340 Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:2daybiz:multi_level_marketing_software:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2010-06-29 18:30

Updated : 2024-02-04 17:54


NVD link : CVE-2010-2516

Mitre link : CVE-2010-2516

CVE.ORG link : CVE-2010-2516


JSON object : View

Products Affected

2daybiz

  • multi_level_marketing_software
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')