CVE-2010-2459

2daybiz Video Community Portal Script - SQL Injection

Title source: rule

Description

SQL injection vulnerability in video.php in 2daybiz Video Community Portal Script 1.0 allows remote attackers to execute arbitrary SQL commands via the videoid parameter.

Exploits (1)

exploitdb WRITEUP VERIFIED

by L0rd CrusAd3r · textwebappsphp

https://www.exploit-db.com/exploits/13970

View Code ZIP pw:eip

References (5)

[Exploit] http://packetstormsecurity.org/1006-exploits/2daybizvcp-sql.txt

[Exploit] http://www.exploit-db.com/exploits/13970

[Exploit] http://www.securityfocus.com/bid/41022

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/59638

[Third Party Advisory, VDB Entry] http://osvdb.org/65810

Scores

EPSS 0.0042

EPSS Percentile 61.4%

Classification

CWE

CWE-89

Status draft

Affected Products (1)

2daybiz/video_community_portal_script

Timeline

Published Jun 25, 2010

Tracked Since Feb 18, 2026