Exploitation Summary
EIP tracks 1 public exploit for CVE-2010-4963. PoCs published by High-Tech Bridge SA.
AI-analyzed exploit summary This exploit demonstrates SQL injection and multiple HTML injection (XSS) vulnerabilities in Hulihan Applications BXR. The PoC includes examples of malicious input for SQLi and XSS payloads that execute arbitrary JavaScript in the context of the affected site.
Description
SQL injection vulnerability in folder/list in Hulihan BXR 0.6.8 allows remote attackers to execute arbitrary SQL commands via the order_by parameter.
Exploits (1)
This exploit demonstrates SQL injection and multiple HTML injection (XSS) vulnerabilities in Hulihan Applications BXR. The PoC includes examples of malicious input for SQLi and XSS payloads that execute arbitrary JavaScript in the context of the affected site.