Lucene search

Web Blog Security Vulnerabilities

cve

CVE-2006-0845

Leif M. Wright's Blog 3.5 allows remote authenticated users with administrative privileges to execute arbitrary programs, including shell commands, by configuring the sendmail path to a malicious...

7AI Score

0.004EPSS

2006-02-22 02:02 AM

cve

CVE-2006-0844

Leif M. Wright's Blog 3.5 does not make a password comparison when authenticating an administrator via a cookie, which allows remote attackers to bypass login authentication, probably by setting the blogAdmin...

6.8AI Score

0.006EPSS

2006-02-22 02:02 AM

cve

CVE-2004-2347

blog.cgi in Leif M. Wright Web Blog 1.1 and 1.1.5 allows remote attackers to execute arbitrary commands via shell metacharacters such as '|' in the file parameter of ViewFile...

7.7AI Score

0.084EPSS

2005-08-16 04:00 AM

cve

CVE-2004-2127

Directory traversal vulnerability in Web Blog 1.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the file...

7AI Score

0.046EPSS

2005-05-27 04:00 AM

Total number of security vulnerabilities54