IDCVSSSummaryLast (major) updatePublished
CVE-2005-4547 4.3
Cross-site scripting (XSS) vulnerability in home/search.php in eggblog 2.0 allows remote attackers to execute arbitrary SQL commands via the q parameter, as used by the Keyword and Search fields.
20-07-2017 - 01:29 28-12-2005 - 11:03
CVE-2005-4546 7.8
search.php in eggblog 2.0 allows remote attackers to obtain the full path via an invalid q parameter, as used by the Keyword and Search fields, possibly due to an SQL injection vulnerability.
20-07-2017 - 01:29 28-12-2005 - 11:03
CVE-2006-2727 7.5
home/register.php in Eggblog before 3.0 allows remote attackers to change the password of administrators and possibly other users via a modified username parameter. This vulnerability is addressed in the following product release: Epic Designs, eggb
18-10-2018 - 16:41 01-06-2006 - 10:02
CVE-2006-2725 6.4
SQL injection vulnerability in rss/posts.php in Eggblog before 3.07 allows remote attackers to execute arbitrary SQL commands via the id parameter. The vendor has released version 3.0.7 of eggblog to address this issue.
18-10-2018 - 16:41 01-06-2006 - 10:02
Back to Top Mark selected
Back to Top