CVE-2010-2687

Site2Nite Boat Classifieds - SQL Injection

Title source: llm

Description

SQL injection vulnerability in printdetail.asp in Site2Nite Boat Classifieds allows remote attackers to execute arbitrary SQL commands via the Id parameter.

Exploits (2)

exploitdb WORKING POC VERIFIED

by CoBRa_21 · textwebappsasp

https://www.exploit-db.com/exploits/13995

View Code ZIP pw:eip

exploitdb WORKING POC

webappsasp

https://www.exploit-db.com/exploits/13990

View Code ZIP pw:eip

References (6)

[Exploit] http://www.securityfocus.com/bid/41059

[Exploit] http://www.exploit-db.com/exploits/13995

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/59671

[Exploit] http://packetstormsecurity.org/1006-exploits/boatclassifieds-sql.txt

[Vendor Advisory] http://secunia.com/advisories/40263

[Third Party Advisory, VDB Entry] http://www.osvdb.org/65685

Scores

EPSS 0.0288

EPSS Percentile 86.3%

Details

CWE

CWE-89

Status published

Products (1)

site2nite/boat_classifieds

Published Jul 12, 2010

Tracked Since Feb 18, 2026