myBloggie 2.1.2/2.1.3 delcomment.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/17048/info MyBloggie is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...

CVE-2005-4225

Multiple "potential" SQL injection vulnerabilities in myBloggie 2.1.3 beta might allow remote attackers to execute arbitrary SQL commands via 1 the category parameter in add.php, 2 the catdesc parameter in addcat.php, 3 the level and user parameters in adduser.php, 4 the postid parameter in...

CVE-2005-1499

CVE-2005-1499 affects myBloggie 2.1.1 via delcomment.php, where remote attackers can delete arbitrary comments by modifying the comment_id parameter. The NVD notes a CVSSv2 base score of 7.5 (HIGH) with network attack vector, low attack complexity, no authentication required, and partial impact o...