Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published Oct 5, 2011· Updated Apr 29, 2026

CVE-2010-4857

CVE-2010-4857

Description

SQL injection vulnerability in click.php in CAG CMS 0.2 Beta allows remote attackers to execute arbitrary SQL commands via the itemid parameter.

Affected products

1

Curtiss Grymala/Cag CMS
cpe:2.3:a:curtiss_grymala:cag_cms:0.2:beta:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

5

packetstormsecurity.org/1010-exploits/cagcms-sqlxss.txtnvdExploit
www.exploit-db.com/exploits/15210nvdExploit
www.securityfocus.com/bid/43719nvdExploit
securityreason.com/securityalert/8415nvd
exchange.xforce.ibmcloud.com/vulnerabilities/62250nvd

News mentions

0

No linked articles in our index yet.