Lucene search
K

8 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

minimal ablog 0.4 (sql/fu/bypass) Multiple Vulnerabilities

No description provided by source. =========================================================================================================== o minimal-ablog 0.4 SQL Injection, File Upload and Admin Bypass Vuln Software : minimal-ablog version 0.4 Vendor : http://www.abweb.co.cc/ Download :...

7.1AI score
Exploits0
NVD
NVD
added 2009/04/06 4:30 p.m.16 views

CVE-2008-6611

SQL injection vulnerability in index.php in Minimal ABlog 0.4 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS8.4AI score0.01151EPSS
Exploits1References6
Prion
Prion
added 2009/04/06 4:30 p.m.11 views

Sql injection

SQL injection vulnerability in index.php in Minimal ABlog 0.4 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9.1AI score0.01151EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2009/04/06 4:30 p.m.15 views

CVE-2008-6613

uploader.php in minimal-ablog 0.4 does not properly restrict access, which allows remote attackers to gain administrative privileges via a direct request...

7.5CVSS6.9AI score0.02447EPSS
Exploits0References4
Prion
Prion
added 2009/04/06 4:30 p.m.19 views

Design/Logic Flaw

uploader.php in minimal-ablog 0.4 does not properly restrict access, which allows remote attackers to gain administrative privileges via a direct request...

7.5CVSS7.5AI score0.02447EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2009/04/06 4:0 p.m.24 views

CVE-2008-6611

SQL injection vulnerability in index.php in Minimal ABlog 0.4 allows remote attackers to execute arbitrary SQL commands via the id parameter...

8.4AI score0.01151EPSS
Exploits1References6
CVE
CVE
added 2009/04/06 4:0 p.m.47 views

CVE-2008-6613

CVE-2008-6613 affects minimal-ablog 0.4, where uploader.php fails to properly restrict access. This allows remote attackers to gain administrative privileges via a direct request. The description and linked references confirm the component and impact but do not provide exploit details, affected v...

7.5CVSS7.1AI score0.02447EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2009/04/06 4:0 p.m.44 views

CVE-2008-6611

CVE-2008-6611 describes a SQL injection in index.php of Minimal ABlog 0.4, exploitable via the id parameter to execute arbitrary SQL commands. The NVD notes a base score of 7.5 (HIGH) with network attack vector and low complexity, no authentication required, affecting confidentiality, integrity, ...

7.5CVSS8.7AI score0.01151EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder