Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
NullamNullam Blog

3 matches found

CVE
CVEadded 2009/10/11 10:0 p.m.44 views

CVE-2009-3665

CVE-2009-3665 refers to multiple SQL injection vulnerabilities in Nullam Blog 0.1.2. The flaw is in the site’s index.php, specifically in the register action, where the parameters (1) i and (2) v can be exploited to execute arbitrary SQL commands remotely. The vulnerability is described with a ba...

7.5CVSS8.5AI score0.02082EPSS
CVE
CVEadded 2009/10/11 10:0 p.m.43 views

CVE-2009-3664

CVE-2009-3664 affects Nullam Blog 0.1.2. The vulnerability is a directory traversal in index.php that allows remote attackers to include or execute arbitrary files via a .. in the p or s parameters. This can lead to partial impacts on confidentiality, integrity, and availability (per CVSS 2.0 bas...

7.5CVSS7.4AI score0.05974EPSS
CVE
CVEadded 2009/10/11 10:0 p.m.40 views

CVE-2009-3666

CVE-2009-3666: Nullam Blog 0.1.2 is affected by a Cross-site scripting (XSS) vulnerability in index.php, exploitable via the e parameter in an error action. The OpenVAS entry labels it as part of "Nullam Blog Multiple Vulnerabilities" with CVSS base 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P). Documents exp...

4.3CVSS5.7AI score0.02967EPSS