Lucene search
K

166 matches found

NVD
NVD
added 2010/04/23 2:30 p.m.17 views

CVE-2009-4801

EZ-Blog Beta 1 does not require authentication, which allows remote attackers to create or delete arbitrary posts via requests to PHP scripts...

7.5CVSS6.9AI score0.02252EPSS
Exploits0References2
Prion
Prion
added 2010/04/23 2:30 p.m.16 views

Authentication flaw

EZ-Blog Beta 1 does not require authentication, which allows remote attackers to create or delete arbitrary posts via requests to PHP scripts...

7.5CVSS7.5AI score0.02252EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2009/04/07 2:17 p.m.16 views

CVE-2008-6650

del.php in miniBloggie 1.0 allows remote attackers to delete arbitrary posts via a direct request with a modified postid parameter, a different vulnerability than CVE-2008-4628...

5CVSS6.6AI score0.01962EPSS
Exploits1References3
NVD
NVD
added 2006/06/02 10:18 a.m.17 views

CVE-2006-2773

admin/redigera/redigera2.asp in Hogstorps hogstorp Guestbook 2.0 does not verify user credentials, which allows remote attackers to edit arbitrary posts via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

6.4CVSS6.5AI score0.01595EPSS
Exploits1References3
Prion
Prion
added 2006/06/02 10:18 a.m.18 views

Code injection

admin/radera/tabort.asp in Hogstorps hogstorp guestbook 2.0 does not verify user credentials, which allows remote attackers to delete arbitrary posts via a modified delID parameter...

6.4CVSS7.2AI score0.02509EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2006/06/02 10:0 a.m.19 views

CVE-2006-2771

admin/radera/tabort.asp in Hogstorps hogstorp guestbook 2.0 does not verify user credentials, which allows remote attackers to delete arbitrary posts via a modified delID parameter...

6.7AI score0.02509EPSS
Exploits1References5
Rows per page
Query Builder