Описание
Multiple SQL injection vulnerabilities in config.php in Insane Visions BlogPHP, possibly 1.0, allow remote attackers to execute arbitrary SQL commands via the (1) blogphp_username or (2) blogphp_password parameter in a cookie.
Multiple SQL injection vulnerabilities in config.php in Insane Visions BlogPHP, possibly 1.0, allow remote attackers to execute arbitrary SQL commands via the (1) blogphp_username or (2) blogphp_password parameter in a cookie.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-0372
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24131
- http://securityreason.com/securityalert/365
- http://www.osvdb.org/22738
- http://www.securityfocus.com/archive/1/422483/100/0/threaded
- http://www.securityfocus.com/archive/1/422484/100/0/threaded
- http://www.securityfocus.com/archive/1/422593/100/0/threaded
- http://www.securityfocus.com/bid/16340
EPSS
Процентиль: 68%
0.00555
Низкий
CVE ID
Связанные уязвимости
nvd
около 20 лет назад
Multiple SQL injection vulnerabilities in config.php in Insane Visions BlogPHP, possibly 1.0, allow remote attackers to execute arbitrary SQL commands via the (1) blogphp_username or (2) blogphp_password parameter in a cookie.
EPSS
Процентиль: 68%
0.00555
Низкий