CVE-2010-1604
published 2010-04-29CVE-2010-1604: Multiple SQL injection vulnerabilities in admin_login.php in NCT Jobs Portal Script allow remote attackers to execute arbitrary SQL commands via the (1) user…
PriorityP340medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
0.91%
55.6th percentile
Multiple SQL injection vulnerabilities in admin_login.php in NCT Jobs Portal Script allow remote attackers to execute arbitrary SQL commands via the (1) user parameter (aka login field) and (2) passwd parameter (aka password field). NOTE: some of these details are obtained from third party information.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://packetstormsecurity.org/1004-exploits/nctjobsportal-sqlxss.txthttp://secunia.com/advisories/39601http://www.exploit-db.com/exploits/12370https://exchange.xforce.ibmcloud.com/vulnerabilities/58080http://packetstormsecurity.org/1004-exploits/nctjobsportal-sqlxss.txthttp://secunia.com/advisories/39601http://www.exploit-db.com/exploits/12370https://exchange.xforce.ibmcloud.com/vulnerabilities/58080
2010-04-29
Published