Sql injection

2006-04-2512:50:00

PRIOn knowledge base

www.prio-n.com

9.3 High

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.2%

JSON

Multiple SQL injection vulnerabilities in RI Blog 1.1 allow remote attackers to execute arbitrary SQL command via the (1) username or (2) password fields.

CPENameOperatorVersion
ri_blogeq1.1

CPE	Name	Operator	Version
	ri_blog	eq	1.1

References

colander.altervista.org/advisory/riblog.txt

secunia.com/advisories/19783

www.securityfocus.com/archive/1/431868/100/0/threaded

www.securityfocus.com/bid/17654

www.vupen.com/english/advisories/2006/1489

exchange.xforce.ibmcloud.com/vulnerabilities/26132