6 matches found
CVE-2005-1309
Cross-site scripting XSS vulnerability in bBlog 0.7.4 allows remote attackers to inject arbitrary web script or HTML via the 1 entry title field or 2 comment body text...
CVE-2005-1309
Cross-site scripting XSS vulnerability in bBlog 0.7.4 allows remote attackers to inject arbitrary web script or HTML via the 1 entry title field or 2 comment body text...
CVE-2005-1309
CVE-2005-1309 is an XSS vulnerability in bBlog 0.7.4 that allows remote attackers to inject arbitrary script or HTML via the entry title field or the comment body text. The weakness is confirmed in multiple sources (NVD entry with CVSSv2 base score 4.3, MEDIUM) and is echoed across related adviso...
CVE-2005-1310
CVE-2005-1310 concerns bBlog 0.7.4, where a SQL Injection flaw in the index.php postid parameter allows remote attackers to execute arbitrary SQL commands. The vulnerability is documented across multiple sources (CVE entry, NVD listing, and Nessus plugin for bBlog
CVE-2005-1310
SQL injection vulnerability in bBlog 0.7.4 allows remote attackers to execute arbitrary SQL commands via the postid parameter...
CVE-2005-1310
SQL injection vulnerability in bBlog 0.7.4 allows remote attackers to execute arbitrary SQL commands via the postid parameter...