2 matches found
CVE-2006-6032
SPHPBlog (Simple PHP Blog) is affected by XSS in CVE-2006-6032. Concrete details from the connected data show vulnerable code paths in SPHPBlog where input is used without proper validation for two parameters: the action parameter in add_block.php and the entry parameter in index.php. The descrip...
CVE-2005-1135
The CVE-2005-1135 issue affects Simple PHP Blog (sphpBlog) 0.4.0, where the search.php script’s q parameter is not properly validated, enabling a remote attacker to inject arbitrary web script or HTML (XSS). The vulnerability is confirmed by the primary CVE entry and supports remediation guidance...