CVE-2010-4793

CVE-2010-4793

EPSS 1.2%

SQL injection vulnerability in detail.asp in Site2Nite Auto e-Manager allows remote attackers to execute arbitrary SQL commands via the ID parameter.

Affected products

public PoCs found — 3

cve_referencepacketstormsecurity.org/1010-exploits/autoemanager-sql.txtunverified cve_referencewww.exploit-db.com/exploits/15230unverified exploitdbwww.exploit-db.com/exploits/15230unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://packetstormsecurity.org/1010-exploits/autoemanager-sql.txt http://secunia.com/advisories/41750 http://securityreason.com/securityalert/8221 https://exchange.xforce.ibmcloud.com/vulnerabilities/62387 http://www.exploit-db.com/exploits/15230 http://www.securityfocus.com/bid/43900