Eaden Mckee » Bblog : Security Vulnerabilities, CVEs, Published In 2005
SQL injection vulnerability in bBlog 0.7.4 allows remote attackers to execute arbitrary SQL commands via the postid parameter.
Max CVSS
7.5
EPSS Score
0.22%
Published
2005-04-23
Updated
2008-09-05
Cross-site scripting (XSS) vulnerability in bBlog 0.7.4 allows remote attackers to inject arbitrary web script or HTML via the (1) entry title field or (2) comment body text.
Max CVSS
4.3
EPSS Score
0.36%
Published
2005-05-02
Updated
2008-09-05
2 vulnerabilities found