D2kblog Security Vulnerabilities and Issues — D2kblog CVE List

Lucene search

D2ksoftD2kblog

2 matches found

CVE•added 2006/03/09 9:2 p.m.•48 views

CVE-2006-1123

SQL injection vulnerability in D2KBlog 1.0.3 and earlier allows remote attackers to execute arbitrary SQL commands via the memName parameter in a cookie.

10CVSS8.4AI score0.01479EPSS

CVE•added 2006/03/09 9:2 p.m.•35 views

CVE-2006-1122

Cross-site scripting (XSS) vulnerability in Default.asp in D2KBlog 1.0.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the msg parameter.

6.8CVSS5.7AI score0.02076EPSS