Unrated severityNVD Advisory· Published Dec 7, 2005· Updated Apr 16, 2026
CVE-2005-4054
CVE-2005-4054
Description
SQL injection vulnerability in index.php in PluggedOut Blog 1.9.5 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) categoryid, (2) entryid, (3) year, (4) month, and (5) day parameter.
Affected products
2cpe:2.3:a:pluggedout:pluggedout_blog:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:pluggedout:pluggedout_blog:*:*:*:*:*:*:*:*range: <=1.9.4
- cpe:2.3:a:pluggedout:pluggedout_blog:1.9.5:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5News mentions
0No linked articles in our index yet.