SQL injection vulnerability in the heme preview feature for default.asp in BP Blog 7.0 through 7.0.2 allows remote attackers to execute arbitrary SQL commands via the layout parameter.
CPE | Name | Operator | Version |
---|---|---|---|
betaparticle_blog | eq | 7.0 | |
betaparticle_blog | le | 7.0.2 |