2 matches found
CVE-2006-5383
SQL injection vulnerability in comadd.php in Def-Blog 1.0.1 and earlier allows remote attackers to execute arbitrary SQL commands via the article parameter...
CVE-2006-5383
The CVE-2006-5383 entry describes an SQL injection in Def-Blog 1.0.1 and earlier, exploitable via the article parameter in comadd.php. Affected software is Def-Blog (version 1.0.1 and earlier). Root cause: improper handling of user-supplied input in the article parameter leading to SQL command ex...