Unrated severityNVD Advisory· Published Mar 14, 2007· Updated Apr 23, 2026

CVE-2007-1445

Description

SQL injection vulnerability in the heme preview feature for default.asp in BP Blog 7.0 through 7.0.2 allows remote attackers to execute arbitrary SQL commands via the layout parameter.

Affected products

Betaparticle/Betaparticle Blog2 versions
cpe:2.3:a:betaparticle:betaparticle_blog:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:betaparticle:betaparticle_blog:*:*:*:*:*:*:*:*range: <=7.0.2
- cpe:2.3:a:betaparticle:betaparticle_blog:7.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

blog.betaparticle.com/template_permalink.aspnvdPatch
secunia.com/advisories/24473nvdPatchVendor Advisory
osvdb.org/33997nvd
www.vupen.com/english/advisories/2007/0919nvd
www.exploit-db.com/exploits/3466nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000