RSS   Vulnerabilities for 'Blog manager'   RSS

2009-01-29
 
CVE-2009-0339

CWE-89
 

 
SQL injection vulnerability in inc_webblogmanager.asp in DMXReady Blog Manager allows remote attackers to execute arbitrary SQL commands via the itemID parameter in a view action.

 
 
CVE-2009-0338

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in inc_webblogmanager.asp in DMXReady Blog Manager allows remote attackers to inject arbitrary web script or HTML via the CategoryID parameter in a refer action.

 

 >>> Vendor: Dmxready 10 Products
Dmxready site chassis manager
Dmxready secure login manager
Site engine manager
Blog manager
Classified listings manager
Member directory manager
Secure document library
Online notebook manager
Registration manager
Polling booth manager


Copyright 2024, cxsecurity.com

 

Back to Top