Unrated severityNVD Advisory· Published Feb 25, 2010· Updated Apr 29, 2026

CVE-2010-0710

Description

SQL injection vulnerability in default.asp in ASPCode CMS 1.5.8, 2.0.0 Build 103, and possibly other versions, allows remote attackers to execute arbitrary SQL commands via the newsid parameter when the sec parameter is 26. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected products

Aspcodecms/Aspcode CMS2 versions
cpe:2.3:a:aspcodecms:aspcode_cms:1.5.8:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:aspcodecms:aspcode_cms:1.5.8:*:*:*:*:*:*:*
- cpe:2.3:a:aspcodecms:aspcode_cms:2.0.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/38596nvdVendor Advisory
osvdb.org/62358nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000