CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2010-2509

Multiple cross-site scripting (XSS) vulnerabilities in 2daybiz Web Template Software allow remote attackers to inject arbitrary web script or HTML via the (1) keyword parameter to category.php and the (2) password parameter to memberlogin.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 34.8%

CVSS Severity

CVSS v2 Score 4.3

References

http://secunia.com/advisories/40348
http://www.exploit-db.com/exploits/14020
http://secunia.com/advisories/40348
http://www.exploit-db.com/exploits/14020

Products affected by CVE-2010-2509

2daybiz » Web Template Software » Version: Any

cpe:2.3:a:2daybiz:web_template_software:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-2509

Products

Pricing

Contact Us