Lucene search

Archangelmgt Security Vulnerabilities

cve

CVE-2008-2356

SQL injection vulnerability in index.php in Archangel Weblog 0.90.02 and earlier allows remote attackers to execute arbitrary SQL commands via the post_id...

8.4AI Score

0.001EPSS

2008-05-20 05:20 PM

cve

CVE-2007-2574

Directory traversal vulnerability in index.php in Archangel Weblog 0.90.02 allows remote attackers to read arbitrary files via a .. (dot dot) in the index...

6.7AI Score

0.003EPSS

2007-05-09 09:19 PM

cve

CVE-2006-4091

Multiple cross-site scripting (XSS) vulnerabilities in Archangel Management Archangel Weblog 0.90.02 allow remote attackers to inject arbitrary web script or HTML via the (1) Name or (2) Comment...

6AI Score

0.007EPSS

2006-08-11 10:04 AM

cve

CVE-2006-0945

PHP remote file include vulnerability in admin/index.php in Archangel Weblog 0.90.02 allows remote authenticated administrators to execute arbitrary PHP code via a URL ending in a NULL (%00) in the index...

7.2AI Score

0.005EPSS

2006-03-01 02:02 AM

cve

CVE-2006-0944

Archangel Weblog 0.90.02 allows remote attackers to bypass authentication by setting the ba_admin cookie to...

7AI Score

0.042EPSS

2006-03-01 02:02 AM