Unrated severityNVD Advisory· Published Apr 23, 2010· Updated Jun 16, 2026
CVE-2009-4805
CVE-2009-4805
Description
Multiple SQL injection vulnerabilities in EZ-Blog Beta 1, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via (1) the storyid parameter to public/view.php or (2) the kill parameter to admin/remove.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:will_kraft:ez-blog:-:beta1:*:*:*:*:*:*
- Range: Beta 1
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.