3 matches found
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in index.php in BlogPHP 2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 user parameter in a sendmessage action and the 2 username parameter when registering a new user, different vectors than CVE-2008-0679...
CVE-2008-6631
Multiple cross-site scripting XSS vulnerabilities in index.php in BlogPHP 2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 user parameter in a sendmessage action and the 2 username parameter when registering a new user, different vectors than CVE-2008-0679...
CVE-2008-0679
CVE-2008-0679 describes a reflected XSS in BlogPHP 2.0's index.php via the search parameter. The vulnerability affects BlogPHP 2.0 and can allow injection of arbitrary script/HTML. The provided documents do not specify a patch or workaround; no exploitation status is given. Related entries (CVE-2...