VYPR

xWeblog

by XWeblog

CVEs (2)

  • CVE-2010-4856Oct 5, 2011
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in arsiv.asp in xWeblog 2.2 allows remote attackers to execute arbitrary SQL commands via the tarih parameter.

  • CVE-2010-4855Oct 5, 2011
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in oku.asp in xWeblog 2.2 allows remote attackers to execute arbitrary SQL commands via the makale_id parameter.