Unrated severityNVD Advisory· Published Oct 9, 2011· Updated Apr 29, 2026
CVE-2010-4963
CVE-2010-4963
Description
SQL injection vulnerability in folder/list in Hulihan BXR 0.6.8 allows remote attackers to execute arbitrary SQL commands via the order_by parameter.
Affected products
1- cpe:2.3:a:hulihanapplications:hulihan_bxr:0.6.8:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- dev.hulihanapplications.com/issues/show/203nvdExploit
- packetstormsecurity.org/1008-exploits/bxr-sqlxssxsrf.txtnvdExploit
- www.htbridge.ch/advisory/sql_injection_vulnerability_in_bxr.htmlnvdExploit
- secunia.com/advisories/40875nvdVendor Advisory
- www.vupen.com/english/advisories/2010/2023nvdVendor Advisory
- securityreason.com/securityalert/8470nvd
- www.securityfocus.com/archive/1/512887/100/0/threadednvd
News mentions
0No linked articles in our index yet.