CVE-2006-2004

2006-04-2510:00:00

mitre

www.cve.org

8.6 High

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.2%

JSON

Multiple SQL injection vulnerabilities in RI Blog 1.1 allow remote attackers to execute arbitrary SQL command via the (1) username or (2) password fields.

References

colander.altervista.org/advisory/riblog.txt

secunia.com/advisories/19783

www.securityfocus.com/archive/1/431868/100/0/threaded

www.securityfocus.com/bid/17654

www.vupen.com/english/advisories/2006/1489

exchange.xforce.ibmcloud.com/vulnerabilities/26132