Описание
SQL injection vulnerability in comments.asp in LBlog 1.05 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
SQL injection vulnerability in comments.asp in LBlog 1.05 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-4284
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28472
- https://www.exploit-db.com/exploits/2230
- http://secunia.com/advisories/21596
- http://securityreason.com/securityalert/1445
- http://securitytracker.com/id?1016721
- http://www.osvdb.org/28036
- http://www.securityfocus.com/archive/1/443872/100/0/threaded
- http://www.securityfocus.com/bid/19607
EPSS
Процентиль: 87%
0.03188
Низкий
CVE ID
Связанные уязвимости
nvd
больше 19 лет назад
SQL injection vulnerability in comments.asp in LBlog 1.05 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
EPSS
Процентиль: 87%
0.03188
Низкий