Simple Php Blog@0.4.7 Security Vulnerabilities and Issues — Simple Php Blog@0.4.7 CVE List

Lucene search

Alexander PalmoSimple Php Blog0.4.7

2 matches found

CVE•added 2006/03/15 5:6 p.m.•37 views

CVE-2006-1243

Directory traversal vulnerability in install05.php in Simple PHP Blog (SPB) 0.4.7.1 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences and a NUL (%00) character in the blog_language parameter, as demonstrated by injecting PHP sequences...

7.5CVSS7.3AI score0.16306EPSS

CVE•added 2009/12/24 5:30 p.m.•34 views

CVE-2009-4421

Directory traversal vulnerability in languages_cgi.php in Simple PHP Blog 0.5.1 and earlier allows remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the blog_language1 parameter.

6.5CVSS6.8AI score0.01877EPSS