Vulnerabilities > 2Daybiz > Auction Script
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-05-04 | CVE-2010-1706 | SQL Injection vulnerability in 2Daybiz Auction Script Multiple SQL injection vulnerabilities in login.php in 2daybiz Auction Script allow remote attackers to execute arbitrary SQL commands via (1) the login field (aka the username parameter), and possibly (2) the password field, to index.php. | 7.5 |