Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
2daybiz vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-1703
Multiple cross-site scripting (XSS) vulnerabilities in index_search.php in 2daybiz Polls (aka Advanced Poll) Script allow remote malicious users to inject arbitrary web script or HTML via the (1) category parameter or (2) search field.
2daybiz Polls Script
1 EDB exploit
NA
CVE-2010-5004
SQL injection vulnerability in searchvote.php in 2daybiz Polls (aka Advanced Poll) Script allows remote malicious users to execute arbitrary SQL commands via the category parameter.
2daybiz Polls Script
1 EDB exploit
NA
CVE-2010-1704
Multiple SQL injection vulnerabilities in 2daybiz Polls (aka Advanced Poll) Script allow remote malicious users to execute arbitrary SQL commands via (1) the password field to login.php, (2) the login field (aka email parameter) to login.php, (3) the password field (aka pass para...
2daybiz Polls Script
1 EDB exploit
NA
CVE-2010-1706
Multiple SQL injection vulnerabilities in login.php in 2daybiz Auction Script allow remote malicious users to execute arbitrary SQL commands via (1) the login field (aka the username parameter), and possibly (2) the password field, to index.php. NOTE: some of these details are ob...
2daybiz Auction Script
1 EDB exploit
NA
CVE-2010-2512
SQL injection vulnerability in customprofile.php in 2daybiz Matrimonial Script allows remote malicious users to execute arbitrary SQL commands via the id parameter.
2daybiz Matrimonial Script
1 EDB exploit
NA
CVE-2009-1651
SQL injection vulnerability in admin/member_details.php in 2daybiz Business Community Script allows remote malicious users to execute arbitrary SQL commands via the mid parameter.
2daybiz Business Community Script
1 EDB exploit
NA
CVE-2009-1767
admin/edituser.php in 2daybiz Template Monster Clone does not require administrative authentication, which allows remote malicious users to modify arbitrary accounts via the (1) loginname, (2) password, (3) email, (4) firstname, or (5) lastname parameter.
2daybiz Template Monster Clone -
1 EDB exploit
NA
CVE-2010-5018
Cross-site scripting (XSS) vulnerability in products/classified/headersearch.php in 2daybiz Online Classified Script allows remote malicious users to inject arbitrary web script or HTML via the sid parameter.
2daybiz Online Classified Script
1 EDB exploit
NA
CVE-2010-5019
SQL injection vulnerability in view_photo.php in 2daybiz Online Classified Script allows remote malicious users to execute arbitrary SQL commands via the alb parameter.
2daybiz Online Classified Script
1 EDB exploit
NA
CVE-2009-1652
admin/adminaddeditdetails.php in Business Community Script does not properly restrict access, which allows remote malicious users to gain privileges and add administrators via a direct request.
2daybiz Business Community Script
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651
CVE-2024-34255
elevation of privilege
CVE-2024-25529
CVE-2024-4671
NULL pointer dereference
CVE-2024-25527
template injection
CVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »