Description
SQL injection vulnerability in customize.php in 2daybiz Web Template Software allows remote attackers to execute arbitrary SQL commands via the tid parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Sangteamtham · textwebappsphp
https://www.exploit-db.com/exploits/14020
References (2)
Core 2
Core References
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/40348
Exploit exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/14020
Scores
EPSS
0.0025
EPSS Percentile
48.6%
Details
CWE
CWE-89
Status
published
Products (1)
2daybiz/web_template_software
Published
Jun 28, 2010
Tracked Since
Feb 18, 2026