SQL injection vulnerability in displayCalendar.asp in ClickTech Click Blog allows remote attackers to execute arbitrary SQL commands via the date parameter.
Max CVSS
7.5
EPSS Score
0.31%
Published
2006-12-01
Updated
2018-10-17
SQL injection vulnerability in default.asp (aka the login page) in ClickTech ClickBlog 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) form_codeword (aka the Password field) parameters.
Max CVSS
7.5
EPSS Score
0.67%
Published
2006-09-19
Updated
2018-10-17
2 vulnerabilities found