2 matches found
CVE-2006-4748
Multiple SQL injection vulnerabilities in F-ART BLOG:CMS 4.1 allow remote attackers to execute arbitrary SQL commands via the 1 xagent, 2 xpath, 3 xreferer, and 4 xdns parameters in a admin/plugins/NPLog.php, and the 5 pitem parameter in b admin/plugins/NPPoll.php; and allow remote authenticated...
CVE-2006-4748
CVE-2006-4748 affects F-ART BLOG:CMS 4.1. Multiple SQL injection vulnerabilities exist in the admin area: parameters (1) xagent, (2) xpath, (3) xreferer, (4) xdns in NP_Log.php; (5) pitem in NP_Poll.php; and (6) pageRef in NP_Referrer.php. These allow remote SQL command execution via the cited pa...