VYPR
Unrated severityNVD Advisory· Published Jun 18, 2010· Updated Jun 16, 2026

CVE-2010-2339

CVE-2010-2339

Description

SQL injection vulnerability in admin/pages.php in Subdreamer CMS 3.x.x allows remote attackers to execute arbitrary SQL commands via the categoryids[] parameter in an update_pages action.

Affected products

8
  • cpe:2.3:a:subdreamer:subdreamer:3.0.0:*:*:*:*:*:*:*+ 7 more
    • cpe:2.3:a:subdreamer:subdreamer:3.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:subdreamer:subdreamer:3.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:subdreamer:subdreamer:3.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:subdreamer:subdreamer:3.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:subdreamer:subdreamer:3.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:subdreamer:subdreamer:3.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:subdreamer:subdreamer:3.1.1:*:*:*:*:*:*:*
    • (no CPE)range: 3.x.x

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.