Aggregates CVE and security vulnerability intelligence across all site2nite-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Disclosed issues often relate to vendor risk sql injection; exposure may include vendor impact data exposure in vendor surface software deployment and vendor surface production workloads contexts.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2010-4793 | SQL injection vulnerability in detail.asp in Site2Nite Auto e-Manager allows remote attackers to execute arbitrary SQL commands via the ID parameter. | [email protected] | 7.5 | 1.61% | 2011-04-27 | 2026-04-29 |
| CVE-2010-4636 | SQL injection vulnerability in detail.asp in Site2Nite Business e-Listings allows remote attackers to execute arbitrary SQL commands via the ID parameter. | [email protected] | 7.5 | 0.25% | 2010-12-30 | 2026-04-29 |
| CVE-2010-4635 | SQL injection vulnerability in detail.asp in Site2Nite Vacation Rental (VRBO) Listings allows remote attackers to execute arbitrary SQL commands via the ID parameter. | [email protected] | 7.5 | 1.55% | 2010-12-30 | 2026-04-29 |
| CVE-2010-4356 | SQL injection vulnerability in news_default.asp in Site2Nite Big Truck Broker allows remote attackers to execute arbitrary SQL commands via the txtSiteId parameter. | [email protected] | 7.5 | 0.24% | 2010-12-01 | 2026-04-29 |
| CVE-2010-2688 | SQL injection vulnerability in detail.asp in Site2Nite Boat Classifieds allows remote attackers to execute arbitrary SQL commands via the ID parameter. | [email protected] | 7.5 | 1.72% | 2010-07-12 | 2026-04-29 |
| CVE-2010-2687 | SQL injection vulnerability in printdetail.asp in Site2Nite Boat Classifieds allows remote attackers to execute arbitrary SQL commands via the Id parameter. | [email protected] | 7.5 | 2.88% | 2010-07-12 | 2026-04-29 |
| CVE-2008-7030 | Multiple SQL injection vulnerabilities in Site2Nite Real Estate Web allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password field to an unspecified component, possibly agentlist.asp. NOTE: this issue was disclosed by an unreliable researcher, so it might be incorrect. | [email protected] | 7.5 | 0.27% | 2009-08-24 | 2026-04-23 |
| CVE-2008-0771 | Multiple SQL injection vulnerabilities in default.asp in Site2Nite allow remote attackers to execute arbitrary SQL commands via the (1) txtUserName and (2) txtPassword parameters. NOTE: some of these details are obtained from third party information. | [email protected] | 7.5 | 0.46% | 2008-02-14 | 2026-04-23 |