Unrated severityNVD Advisory· Published Jul 12, 2010· Updated Apr 29, 2026
CVE-2010-2691
CVE-2010-2691
Description
Multiple SQL injection vulnerabilities in 2daybiz Custom T-Shirt Design Script allow remote attackers to execute arbitrary SQL commands via the (1) sbid parameter to products_details.php, (2) pid parameter to products/products.php, and (3) designid parameter to designview.php.
Affected products
1- cpe:2.3:a:2daybiz:custom_t-shirt_design_script:*:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- www.exploit-db.com/exploits/14048nvdExploit
- www.packetstormsecurity.com/1006-exploits/2daybiztshirt-sql.txtnvdExploit
- www.securityfocus.com/bid/41154nvdExploit
- secunia.com/advisories/40362nvdVendor Advisory
- www.vupen.com/english/advisories/2010/1608nvdVendor Advisory
- osvdb.org/65824nvd
- osvdb.org/65825nvd
- osvdb.org/65826nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/59790nvd
News mentions
0No linked articles in our index yet.