Eaden Mckee : Security Vulnerabilities, CVEs,
SQL injection vulnerability in bBlog 0.7.4 allows remote attackers to execute arbitrary SQL commands via the postid parameter.
Max CVSS
7.5
EPSS Score
0.22%
Published
2005-04-23
Updated
2008-09-05
Cross-site scripting (XSS) vulnerability in bBlog 0.7.4 allows remote attackers to inject arbitrary web script or HTML via the (1) entry title field or (2) comment body text.
Max CVSS
4.3
EPSS Score
0.36%
Published
2005-05-02
Updated
2008-09-05
SQL injection vulnerability in bBlog 0.7.2 and 0.7.3 allows remote attackers to execute arbitrary SQL commands via the p parameter.
Max CVSS
7.5
EPSS Score
0.51%
Published
2004-12-31
Updated
2017-07-11
3 vulnerabilities found