Unrated severityNVD Advisory· Published Jul 8, 2010· Updated Jun 16, 2026
CVE-2010-2673
CVE-2010-2673
Description
SQL injection vulnerability in profile_view.php in Devana 1.6.6 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8cpe:2.3:a:devana:devana:*:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:devana:devana:*:*:*:*:*:*:*:*range: <=1.6.6
- cpe:2.3:a:devana:devana:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:devana:devana:1.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:devana:devana:1.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:devana:devana:1.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:devana:devana:1.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:devana:devana:1.5.3:*:*:*:*:*:*:*
- (no CPE)range: <=1.6.6
Patches
Vulnerability mechanics
References
4- osvdb.org/63278nvdExploit
- packetstormsecurity.org/1003-exploits/devana-sql.txtnvdExploit
- www.exploit-db.com/exploits/11922nvdExploit
- secunia.com/advisories/39121nvdVendor Advisory
News mentions
0No linked articles in our index yet.