2 matches found
CVE-2009-4805
EZ-Blog Beta 1 is affected by SQL injection vulnerabilities in public/view.php (storyid) and admin/remove.php (kill) when magic_quotes_gpc is disabled. The issue allows remote attackers to execute arbitrary SQL commands as described in CVE-2009-4805. The OpenVAS entry confirms an SQLi vulnerabili...
EZ-Blog SQLi Vulnerability (Mar 2009) - Active Check
EZ-Blog is prone to an SQL injection SQLi vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respectiv...