site2nite 関連製品全体の CVE とセキュリティ脆弱性情報を集約し、CVSS、EPSS、公開日、脆弱性情報データを掲載しています。
公開された問題は vendor risk sql injection に関連することが多く、vendor surface software deployment and vendor surface production workloads の文脈で vendor impact data exposure などの暴露リスクを伴う場合があります。
掲載データは公開脆弱性情報とセキュリティ公告に基づき、過去の暴露面と修補優先度の評価に利用できます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2010-4793 | SQL injection vulnerability in detail.asp in Site2Nite Auto e-Manager allows remote attackers to execute arbitrary SQL commands via the ID parameter. | [email protected] | 7.5 | 1.61% | 2011-04-27 | 2026-04-29 |
| CVE-2010-4636 | SQL injection vulnerability in detail.asp in Site2Nite Business e-Listings allows remote attackers to execute arbitrary SQL commands via the ID parameter. | [email protected] | 7.5 | 0.25% | 2010-12-30 | 2026-04-29 |
| CVE-2010-4635 | SQL injection vulnerability in detail.asp in Site2Nite Vacation Rental (VRBO) Listings allows remote attackers to execute arbitrary SQL commands via the ID parameter. | [email protected] | 7.5 | 1.55% | 2010-12-30 | 2026-04-29 |
| CVE-2010-4356 | SQL injection vulnerability in news_default.asp in Site2Nite Big Truck Broker allows remote attackers to execute arbitrary SQL commands via the txtSiteId parameter. | [email protected] | 7.5 | 0.24% | 2010-12-01 | 2026-04-29 |
| CVE-2010-2688 | SQL injection vulnerability in detail.asp in Site2Nite Boat Classifieds allows remote attackers to execute arbitrary SQL commands via the ID parameter. | [email protected] | 7.5 | 1.72% | 2010-07-12 | 2026-04-29 |
| CVE-2010-2687 | SQL injection vulnerability in printdetail.asp in Site2Nite Boat Classifieds allows remote attackers to execute arbitrary SQL commands via the Id parameter. | [email protected] | 7.5 | 2.88% | 2010-07-12 | 2026-04-29 |
| CVE-2008-7030 | Multiple SQL injection vulnerabilities in Site2Nite Real Estate Web allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password field to an unspecified component, possibly agentlist.asp. NOTE: this issue was disclosed by an unreliable researcher, so it might be incorrect. | [email protected] | 7.5 | 0.27% | 2009-08-24 | 2026-04-23 |
| CVE-2008-0771 | Multiple SQL injection vulnerabilities in default.asp in Site2Nite allow remote attackers to execute arbitrary SQL commands via the (1) txtUserName and (2) txtPassword parameters. NOTE: some of these details are obtained from third party information. | [email protected] | 7.5 | 0.46% | 2008-02-14 | 2026-04-23 |