CVE-2010-2342

Dmxready Online Notebook Manager - SQL Injection

Title source: rule
STIX 2.1

Description

SQL injection vulnerability in onlinenotebookmanager.asp in DMXReady Online Notebook Manager 1.0 allows remote attackers to execute arbitrary SQL commands via the ItemID parameter.

Exploits (1)

exploitdb WRITEUP VERIFIED
by L0rd CrusAd3r · textwebappsasp
https://www.exploit-db.com/exploits/13793

References (2)

Core 2
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/40692
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/13793

Scores

EPSS 0.0023
EPSS Percentile 46.1%

Details

CWE
CWE-89
Status published
Products (1)
dmxready/online_notebook_manager 1.0
Published Jun 21, 2010
Tracked Since Feb 18, 2026