RSS   Vulnerabilities for 'Loudblog'   RSS

2009-02-06
 
CVE-2008-6077

CWE-89
 

 
SQL injection vulnerability in loudblog/ajax.php in LoudBlog 0.8.0a and earlier allows remote authenticated users to execute arbitrary SQL commands via the colpick parameter in a singleread action.

 
2008-01-08
 
CVE-2008-0139

 

 
Eval injection vulnerability in loudblog/inc/parse_old.php in Loudblog 0.8.0 and earlier allows remote attackers to execute arbitrary PHP code via the template parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top