Loudblog@0.41 Security Vulnerabilities and Issues — Loudblog@0.41 CVE List

Lucene search

Gerrit Van AakenLoudblog0.41

4 matches found

CVE•added 2006/07/25 1:22 p.m.•37 views

CVE-2006-3832

SQL injection vulnerability in index.php in Gerrit van Aaken Loudblog 0.5 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.

7.5CVSS8.4AI score0.05197EPSS

CVE•added 2006/03/09 1:6 p.m.•34 views

CVE-2006-1114

Multiple directory traversal vulnerabilities in Loudblog before 0.42 allow remote attackers to read or include arbitrary files via a .. (dot dot) and trailing %00 (NULL) byte in the (1) template and (2) page parameters in (a) index.php, and the (3) language parameter in (b) inc/backend_settings.php...

6.4CVSS6.9AI score0.07158EPSS

CVE•added 2006/07/25 1:22 p.m.•28 views

CVE-2006-3820

Cross-site scripting (XSS) vulnerability in loudblog/index.php in Loudblog before 0.5 allows remote attackers to inject arbitrary web script or HTML via the page parameter.

4.3CVSS5.9AI score0.00507EPSS

CVE•added 2006/03/09 1:6 p.m.•26 views

CVE-2006-1113

SQL injection vulnerability in podcast.php in Loudblog before 0.42 allows remote attackers to execute arbitrary SQL commands via the id parameter.

5CVSS8.4AI score0.0051EPSS