wbblog (xss/sql) Multiple Vulnerabilities

No description provided by source. ======================x=o=r=o=n===================== WBBlog XSS/SQL Multiple Remote Vulnerabilities ======================x=o=r=o=n===================== Bulan: xoron xoron.biz ======================x=o=r=o=n===================== SQL INJ:...

Directory traversal

Directory traversal vulnerability in index.php in Pritlog 0.4 and earlier, when magicquotesgpc is disabled, allows remote attackers to read arbitrary files via a .. dot dot in the filename parameter in a viewEntry action...

Printlog <= 0.4: Remote File Edition Vulnerability

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Printlog = 0.4: Remote File Edition Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= $ Program: Printlog $ File affected: index.php $ Version: 0.4 $ Download: http://www.hardkap.net/pritlog Found by Pepelux pepeluxatenye-sec.org...

Sql injection

SQL injection vulnerability in index.php in WBBlog allows remote attackers to execute arbitrary SQL commands via the eid parameter in a viewentry cmd...

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in WBBlog allows remote attackers to inject arbitrary web script or HTML via the eid parameter in a viewentry cmd...

CVE-2007-1481

SQL injection vulnerability in index.php in WBBlog allows remote attackers to execute arbitrary SQL commands via the eid parameter in a viewentry cmd...

CVE-2007-1482

Summary: CVE-2007-1482 is an XSS vulnerability in WBBlog’s index.php, exploited via the e_id parameter in a viewentry cmd. Affected component: WBBlog, index.php. The underlying issue is a Cross-site scripting flaw that allows remote attackers to inject arbitrary web script or HTML. Impact (as sta...

CVE-2007-1482

Cross-site scripting XSS vulnerability in index.php in WBBlog allows remote attackers to inject arbitrary web script or HTML via the eid parameter in a viewentry cmd...