Published: 02/07/2010 Updated: 10/10/2018

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Multiple SQL injection vulnerabilities in iScripts EasySnaps 2.0 allow remote malicious users to execute arbitrary SQL commands via the (1) comment parameter to add_comments.php, (2) values parameter to tags_details.php, or (3) begin parameter to greetings.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
iscripts easysnaps 2.0

iScripts EasySnaps 20 Multiple SQL Injection Vulnerabilities Name iScripts EasySnaps Vendor wwwiscriptscom Versions Affected 20 Author Salvatore Fresta aka Drosophila Website wwwsalvatorefrestanet Contact salvatorefresta [at] gmail [dot] com Date 2010-0 ...

CWE-89 http://www.exploit-db.com/exploits/14162 http://www.salvatorefresta.net/files/adv/iScripts%20EasySnaps%202.0%20Multiple%20SQL%20Injection%20Vulnerabilities-01072010.txt http://secunia.com/advisories/40448 http://www.securityfocus.com/bid/41298 https://exchange.xforce.ibmcloud.com/vulnerabilities/59984 http://www.securityfocus.com/archive/1/512140/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/14162/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-2624

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect