Vulnerability Details CVE-2010-2692
Cross-site scripting (XSS) vulnerability in 2daybiz Custom T-Shirt Design Script allows remote attackers to inject arbitrary web script or HTML via a review comment.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 48.8%
CVSS Severity
CVSS v2 Score 4.3
References
- http://osvdb.org/65827
- http://secunia.com/advisories/40362
- http://www.packetstormsecurity.com/1006-exploits/2daybiztshirt-sql.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/59791
- http://osvdb.org/65827
- http://secunia.com/advisories/40362
- http://www.packetstormsecurity.com/1006-exploits/2daybiztshirt-sql.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/59791
Products affected by CVE-2010-2692
-
cpe:2.3:a:2daybiz:custom_t-shirt_design_script:*