Simple Php Blog@0.4.5 Security Vulnerabilities and Issues — Simple Php Blog@0.4.5 CVE List

Lucene search

Alexander PalmoSimple Php Blog0.4.5

3 matches found

CVE•added 2006/03/15 5:6 p.m.•37 views

CVE-2006-1243

Directory traversal vulnerability in install05.php in Simple PHP Blog (SPB) 0.4.7.1 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences and a NUL (%00) character in the blog_language parameter, as demonstrated by injecting PHP sequences...

7.5CVSS7.3AI score0.16306EPSS

CVE•added 2005/11/03 2:2 a.m.•35 views

CVE-2005-3473

Multiple cross-site scripting (XSS) vulnerabilities in Simple PHP Blog 0.4.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) entry, (2) blog_subject, and (3) blog_text parameters (involving the temp_subject variable) in (a) preview_cgi.php and (b) preview_stati...

4.3CVSS6.1AI score0.02215EPSS

CVE•added 2009/12/24 5:30 p.m.•34 views

CVE-2009-4421

Directory traversal vulnerability in languages_cgi.php in Simple PHP Blog 0.5.1 and earlier allows remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the blog_language1 parameter.

6.5CVSS6.8AI score0.01877EPSS