2 matches found
CVE-2004-1570
SQL injection vulnerability in bBlog 0.7.2 and 0.7.3 allows remote attackers to execute arbitrary SQL commands via the p parameter...
CVE-2004-1570
CVE-2004-1570 affects bBlog 0.7.2/0.7.3 with a SQL injection via the p parameter, per multiple sources. OpenVAS/Nessus entries also cite RSS.php and index.php vulnerabilities on older bBlog (≤0.7.4) that could allow arbitrary PHP code execution or database control. No vendor-supplied fix details ...