Vulnerability CVE-2010-2459

Vulnerability CVE-2010-2459

Published: 2010-06-25 Modified: 2012-02-13

Description:

	Topic	Author	Date
High	Video Community portal 1.0 SQLi and XSS Vulnerable	L0rd CrusAd3r a...	30.06.2010

Type:

(Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
7.5/10	6.4/10	10/10

Affected software
2daybiz -> Video community portal script

http://xforce.iss.net/xforce/xfdb/59638

http://www.securityfocus.com/bid/41022

http://www.exploit-db.com/exploits/13970

http://packetstormsecurity.org/1006-exploits/2daybizvcp-sql.txt

http://osvdb.org/65810