Unrated severityNVD Advisory· Published Jun 10, 2008· Updated Apr 23, 2026
CVE-2008-2626
CVE-2008-2626
Description
SQL injection vulnerability in comment.asp in Battle Blog 1.25 and earlier allows remote attackers to execute arbitrary SQL commands via the entry parameter.
Affected products
10cpe:2.3:a:battleblog:battleblog:*:build_4:*:*:*:*:*:*+ 9 more
- cpe:2.3:a:battleblog:battleblog:*:build_4:*:*:*:*:*:*range: <=1.25
- cpe:2.3:a:battleblog:battleblog:1.0d:build_3:*:*:*:*:*:*
- cpe:2.3:a:battleblog:battleblog:1.0d:build_4:*:*:*:*:*:*
- cpe:2.3:a:battleblog:battleblog:1.0d:build_5:*:*:*:*:*:*
- cpe:2.3:a:battleblog:battleblog:1.0d:build_5a:*:*:*:*:*:*
- cpe:2.3:a:battleblog:battleblog:1.0d:build_6:*:*:*:*:*:*
- cpe:2.3:a:battleblog:battleblog:1.05:build_1:*:*:*:*:*:*
- cpe:2.3:a:battleblog:battleblog:1.20:build_1:*:*:*:*:*:*
- cpe:2.3:a:battleblog:battleblog:1.20:build_2:*:*:*:*:*:*
- cpe:2.3:a:battleblog:battleblog:1.20:build_3:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6News mentions
0No linked articles in our index yet.