2daybiz

Web Template Software

2 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2010-2509

Exploit
  • EPSS 0.14%
  • Published 28.06.2010 20:30:01
  • Last modified 11.04.2025 00:51:21

Multiple cross-site scripting (XSS) vulnerabilities in 2daybiz Web Template Software allow remote attackers to inject arbitrary web script or HTML via the (1) keyword parameter to category.php and the (2) password parameter to memberlogin.php.

7.5

CVE-2010-2510

Exploit
  • EPSS 0.11%
  • Published 28.06.2010 20:30:01
  • Last modified 11.04.2025 00:51:21

SQL injection vulnerability in customize.php in 2daybiz Web Template Software allows remote attackers to execute arbitrary SQL commands via the tid parameter.