Unrated severityNVD Advisory· Published Sep 17, 2007· Updated Apr 23, 2026

CVE-2007-4919

Description

Multiple SQL injection vulnerabilities in JBlog 1.0 allow (1) remote attackers to execute arbitrary SQL commands via the id parameter to index.php, and allow (2) remote authenticated administrators to execute arbitrary SQL commands via the id parameter to admin/modifpost.php.

Affected products

Jblog/Jblog
cpe:2.3:a:jblog:jblog:1.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/25669nvdExploit
www.vupen.com/english/advisories/2007/3178nvd
exchange.xforce.ibmcloud.com/vulnerabilities/36602nvd
www.exploit-db.com/exploits/4408nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000