8.1 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
54.6%
Bo-blog Wind through 1.6.0-r allows SQL Injection via the admin.php/comments/batchdel/ comID parameter because this parameter is mishandled in the mode/admin.mode.php delBlockedBatch function.
c3tsec.wordpress.com/2019/01/12/sql-injection-in-bo-blog-wind-cms/