Unrated severityNVD Advisory· Published Oct 9, 2011· Updated Apr 29, 2026

CVE-2010-4922

Description

Multiple SQL injection vulnerabilities in Allinta CMS 22.07.2010 allow remote attackers to execute arbitrary SQL commands via the i parameter in an edit action to (1) contentAE.asp or (2) templatesAE.asp.

Affected products

Allinta/Allinta Cms
cpe:2.3:a:allinta:allinta_cms:22.07.2010:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.htbridge.ch/advisory/sql_injection_vulnerability_in_allinta_cms.htmlnvdExploit
www.htbridge.ch/advisory/sql_injection_vulnerability_in_allinta_cms_1.htmlnvdExploit
www.securityfocus.com/archive/1/512958nvdExploit
www.securityfocus.com/bid/42320nvdExploit
securityreason.com/securityalert/8453nvd
www.securityfocus.com/archive/1/512959/100/0/threadednvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000