RSS   Vulnerabilities for 'Web blog'   RSS

2006-02-21
 
CVE-2006-0846

 

 
Multiple cross-site scripting (XSS) vulnerabilities in Leif M. Wright's Blog 3.5 allow remote attackers to inject arbitrary web script or HTML via the (1) Referer and (2) User-Agent HTTP headers, which are stored in a log file and not sanitized when the administrator views the "Log" page, possibly using the ViewCommentsLog function.

 
 
CVE-2006-0845

 

 
Leif M. Wright's Blog 3.5 allows remote authenticated users with administrative privileges to execute arbitrary programs, including shell commands, by configuring the sendmail path to a malicious pathname.

 
 
CVE-2006-0844

 

 
Leif M. Wright's Blog 3.5 does not make a password comparison when authenticating an administrator via a cookie, which allows remote attackers to bypass login authentication, probably by setting the blogAdmin cookie.

 
 
CVE-2006-0843

 

 
Leif M. Wright's Blog 3.5 stores the config file and other txt files under the web root with insufficient access control, which allows remote attackers to read the administrator's password.

 
2004-12-31
 
CVE-2004-2347

 

 
blog.cgi in Leif M. Wright Web Blog 1.1 and 1.1.5 allows remote attackers to execute arbitrary commands via shell metacharacters such as '|' in the file parameter of ViewFile requests.

 
2004-01-20
 
CVE-2004-2127

 

 
Directory traversal vulnerability in Web Blog 1.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the file variable.

 

 >>> Vendor: Leif m. wright 5 Products
Simplestguest.cgi
Everythingform.cgi
Simplestmail.cgi
Ad.cgi
Web blog


Copyright 2020, cxsecurity.com

 

Back to Top