Serendipity <= 1.0-beta2 Blog Configuration PHP Code Injection

Binary data 3518.prm...

PluggedOut Blog 1.511.60 - Blog_Exec.php Cross-Site Scripting

PluggedOut Blog 1.511.60 - BlogExec.php Cross-Site Scripting source: https://www.securityfocus.com/bid/10885/info PluggedOut Blog is reported prone to a cross-site scripting vulnerability. This could allow for execution of hostile HTML and script code in the web client of a user who visits a...

PluggedOut Blog 1.51/1.60 - &#039;Blog_Exec.php&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/10885/info PluggedOut Blog is reported prone to a cross-site scripting vulnerability. This could allow for execution of hostile HTML and script code in the web client of a user who visits a malicious link to the vulnerable site. This code execution would...

Nucleus CMS 3.0 Blog:CMS 3 PunBB 1.x - Common.php Remote File Inclusion

Nucleus CMS 3.0 Blog:CMS 3 PunBB 1.x - Common.php Remote File Inclusion source: https://www.securityfocus.com/bid/10760/info Nucleus CMS, Blog:CMS, and PunBB are vulnerable to a remote file include vulnerability that may allow an attacker to include malicious files containing arbitrary code to be...

bblog 0.7.2 cross site scripting

Introduction: Bblog, a blogging system scripted in PHP does not perform sufficient filtering when submitting a blog name. The severity of this flaw however, is low as the required privileges to access the administration panel for bblog is superuser. The problem: The flaw lies in...

Web Blog 1.1 Remote Execute Commands Bug

Product: Web Blog 1.1 Remote Execute Commands Bug Affected Versions: 1.1.5 Bug: Command Remote Execution Credits: n3rd - Lit Security Solutions LiSS Affix in irc.brasnet.org Vendor: http://leifwright.com Exploiting:...

Leif Wright Web Blog blog.cgi ViewFile Request file Parameter Arbitrary Command Execution

The remote host is running LeifWright's blog.cgi - a CGI designed to handle personal web logs or 'blogs'. There is a bug in this software that could allow an attacker to execute arbitrary commands on the remote web server with the privileges of the web user. %NASLMINLEVEL 70300 C Tenable Network...

ZH2004-01SA &#40;security advisory&#41;: Web Blog 1.1 Remote arbitrary files retrieving

ZH2004-01SA security advisory: Web Blog 1.1 Remote arbitrary files retrieving Published: 28 january 2004 Released: 28 january 2004 Name: Web Blog Affected Systems: 1.1 Issue: Remote file retrieving Author: Zone-h Security Labs Vendor: http://leifwright.com Description Zone-h Security Team has...

webBlog11.txt

Product: Web Blog 1.1 Remote Execute Commands Bug Affected Versions: 1.1.5 Bug: Command Remote Execution Credits: n3rd - Lit Security Solutions LiSS Affix in irc.brasnet.org Vendor: http://leifwright.com Exploiting:...

ZH2004-01SA.txt

ZH2004-01SA security advisory: Web Blog 1.1 Remote arbitrary files retrieving Published: 28 january 2004 Released: 28 january 2004 Name: Web Blog Affected Systems: 1.1 Issue: Remote file retrieving Author: Zone-h Security Labs Vendor: http://leifwright.com Description Zone-h Security Team has...

CVE-2004-2127

Directory traversal vulnerability in Web Blog 1.1 allows remote attackers to read arbitrary files via a .. dot dot in the file variable...

Security update 1970-01-01

...

Writer Installation and Upgrades

Contains installation and upgrade files for Windows Live Writer, a program designed to make it easier to edit and publish rich content to your blog...

Unguarded calls to __toString() when nesting an object into an array

More info at https://symfony.com/blog/cve-2024-51754-unguarded-calls-to-tostring-in-a-sandbox-when-an-object-is-in-an-array-or-an-argument-list...