Simple Php Blog Security Vulnerabilities and Issues — Simple Php Blog CVE List

Lucene search

Alexander PalmoSimple Php Blog

3 matches found

CVE•added 2005/05/02 4:0 a.m.•42 views

CVE-2005-1135

Cross-site scripting (XSS) vulnerability in search.php for Simple PHP Blog (sphpBlog) 0.4.0 allows remote attackers to inject arbitrary web script or HTML via the q parameter.

4.3CVSS5.8AI score0.00416EPSS

CVE•added 2005/05/02 4:0 a.m.•37 views

CVE-2005-1137

Simple PHP Blog (sphpBlog) 0.4.0 allows remote attackers to obtain sensitive information via a direct request to sb_functions.php, which leaks the full pathname in a PHP error message.

5CVSS6.6AI score0.00409EPSS

CVE•added 2005/05/02 4:0 a.m.•33 views

CVE-2005-0214

Directory traversal vulnerability in Simple PHP Blog (SPHPBlog) 0.3.7c allows remote attackers to read or create arbitrary files via a .. (dot dot) in the entry parameter.

5CVSS6.8AI score0.01302EPSS