Multiple SQL injection vulnerabilities in MyBlog allow remote attackers to execute arbitrary SQL commands via the (1) view parameter to (a) index.php, and the (2) id parameter to (b) member.php and (c) post.php.
References
Configurations
Information
Published : 2008-07-02 10:14
Updated : 2017-09-28 18:31
NVD link : CVE-2008-2963
Mitre link : CVE-2008-2963
JSON object : View
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Products Affected
myblog
- myblog