Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
2daybiz vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2009-1767
admin/edituser.php in 2daybiz Template Monster Clone does not require administrative authentication, which allows remote malicious users to modify arbitrary accounts via the (1) loginname, (2) password, (3) email, (4) firstname, or (5) lastname parameter.
2daybiz Template Monster Clone -
1 EDB exploit
7.5
CVSSv2
CVE-2009-1652
admin/adminaddeditdetails.php in Business Community Script does not properly restrict access, which allows remote malicious users to gain privileges and add administrators via a direct request.
2daybiz Business Community Script
1 EDB exploit
4.3
CVSSv2
CVE-2010-2509
Multiple cross-site scripting (XSS) vulnerabilities in 2daybiz Web Template Software allow remote malicious users to inject arbitrary web script or HTML via the (1) keyword parameter to category.php and the (2) password parameter to memberlogin.php.
2daybiz Web Template Software
1 EDB exploit
7.5
CVSSv2
CVE-2010-2510
SQL injection vulnerability in customize.php in 2daybiz Web Template Software allows remote malicious users to execute arbitrary SQL commands via the tid parameter.
2daybiz Web Template Software
1 EDB exploit
7.5
CVSSv2
CVE-2011-5215
SQL injection vulnerability in index.php in Video Community Portal allows remote malicious users to execute arbitrary SQL commands via the id parameter.
2daybiz Video Community Portal Script -
7.5
CVSSv2
CVE-2010-2609
SQL injection vulnerability in show_search_result.php in 2daybiz Job Search Engine Script allows remote malicious users to execute arbitrary SQL commands via the keyword parameter.
2daybiz Job Search Engine Script
1 EDB exploit
7.5
CVSSv2
CVE-2010-2511
SQL injection vulnerability in viewnews.php in 2daybiz Multi Level Marketing (MLM) Software allows remote malicious users to execute arbitrary SQL commands via the nwsid parameter.
2daybiz Multi Level Marketing Software
1 EDB exploit
7.5
CVSSv2
CVE-2010-2516
Multiple SQL injection vulnerabilities in 2daybiz Multi Level Marketing (MLM) Software allow remote malicious users to execute arbitrary SQL commands via the username parameter to (1) index.php and (2) admin/index.php. NOTE: the provenance of this information is unknown; the deta...
2daybiz Multi Level Marketing Software
4.3
CVSSv2
CVE-2009-1820
Cross-site scripting (XSS) vulnerability in product.php in 2daybiz Custom T-shirt Design Script allows remote malicious users to inject arbitrary web script or HTML via the id parameter.
2daybiz Custom T-shirt Design Script
1 EDB exploit
4.3
CVSSv2
CVE-2010-2692
Cross-site scripting (XSS) vulnerability in 2daybiz Custom T-Shirt Design Script allows remote malicious users to inject arbitrary web script or HTML via a review comment.
2daybiz Custom T-shirt Design Script
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »