VYPR

myBloggie

by MyBloggie

CVEs (2)

  • CVE-2007-3003Jun 4, 2007
    risk 0.03cvss epss 0.01

    Multiple SQL injection vulnerabilities in myBloggie 2.1.6 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) cat_id or (2) year parameter to index.php in a viewuser action, different vectors than CVE-2005-1500 and CVE-2005-4225.

  • CVE-2005-4225Dec 14, 2005
    risk 0.00cvss epss 0.02

    Multiple "potential" SQL injection vulnerabilities in myBloggie 2.1.3 beta might allow remote attackers to execute arbitrary SQL commands via (1) the category parameter in add.php, (2) the cat_desc parameter in addcat.php, (3) the level and user parameters in adduser.php, (4)…