Unrated severityNVD Advisory· Published Jul 28, 2010· Updated Apr 29, 2026

CVE-2010-2906

Description

SQL injection vulnerability in articlesdetails.php in ScriptsFeed and BrotherScripts (BS) Scripts Directory allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2010-2905.

Affected products

Brotherscripts/Scripts Directory
cpe:2.3:a:brotherscripts:scripts_directory:*:*:*:*:*:*:*:*
Scriptsfeed/Scripts Directory
cpe:2.3:a:scriptsfeed:scripts_directory:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.exploit-db.com/exploits/14371nvdExploit
secunia.com/advisories/40463nvdVendor Advisory
exchange.xforce.ibmcloud.com/vulnerabilities/60073nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000