CVE-2007-1445
CVE-2007-1445 affects BP Blog 7.0–7.0.2. The vulnerability is in the heme preview feature of default.asp, where an attacker can inject SQL through the layout parameter, enabling arbitrary SQL commands on the backend. The CVSS-derived context from the NVD indicates a network-accessible, low-attack...