CVE-2010-2826

CVE Database · CVE-2010-2826

CVE-2010-2826

· N/AModified

CVSS v3.1

N/A

EPSS

1.34%

Published

Aug 17, 2010

Modified

Apr 28, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

SQL injection vulnerability in Cisco Wireless Control System (WCS) 6.0.x before 6.0.196.0 allows remote authenticated users to execute arbitrary SQL commands via vectors related to the ORDER BY clause of the Client List screens, aka Bug ID CSCtf37019.

Weaknesses (CWE)

CWE-89

Affected Products (6)

cisco · wireless_control_system_softwarevulnerable

References (2)

http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091e.shtml

Vendor Advisory

http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091e.shtml

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs