Multiple SQL injection vulnerabilities in 2daybiz Job Site Script allow remote attackers to execute arbitrary SQL commands via the (1) jid parameter to view_current_job.php, (2) job_iid parameter to show_search_more.php, and (3) left_cat parameter to show_search_result.php.
References
Configurations
History
No history.
Information
Published : 2010-07-02 12:44
Updated : 2024-02-04 17:54
NVD link : CVE-2010-2610
Mitre link : CVE-2010-2610
CVE.ORG link : CVE-2010-2610
JSON object : View
Products Affected
2daybiz
- job_site_script
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')