[] NeoSense
E X P L O I T S
title author type platform port cve id

4Site CMS 2.6 - 'cat' SQL Injection

Author: High-Tech Bridge SA
type: webapps
platform: php
port: 
date_added: 2010-10-19 
date_updated: 2014-10-05 
verified: 1 
codes: CVE-2010-4152;OSVDB-69207 
tags: 
aliases:  
screenshot_url:  
application_url: 
source: https://www.securityfocus.com/bid/44258/info

4Site CMS is prone to an SQL-injection vulnerability.

An attacker can exploit this issue to carry out unauthorized actions on the underlying database which may compromise the application and may aid in further attacks.

4Site CMS 2.6 is vulnerable; other versions may also be affected.

http://www.example.com/catalog/index.shtml?cat=-1+UNION+SELECT+@@version
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.