VYPR
Unrated severityNVD Advisory· Published Nov 3, 2010· Updated Jun 16, 2026

CVE-2010-4152

CVE-2010-4152

Description

SQL injection vulnerability in catalog/index.shtml in 4site CMS 2.6, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the cat parameter. NOTE: the i and th vectors are already covered by CVE-2009-0646.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • 4site/4site CMS4 versions
    cpe:2.3:a:4site:4site_cms:*:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:4site:4site_cms:*:*:*:*:*:*:*:*range: <=2.6
    • cpe:2.3:a:4site:4site_cms:2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:4site:4site_cms:2.2:*:*:*:*:*:*:*
    • (no CPE)range: <=2.6

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.