VYPR

Super Simple Blog Script

by Supersimple

CVEs (2)

  • CVE-2009-2553Jul 20, 2009
    risk 0.03cvss epss 0.02

    Multiple SQL injection vulnerabilities in comments.php in Super Simple Blog Script 2.5.4, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the entry parameter.

  • CVE-2009-2552Jul 20, 2009
    risk 0.03cvss epss 0.02

    Multiple directory traversal vulnerabilities in comments.php in Super Simple Blog Script 2.5.4 allow remote attackers to overwrite, include, and execute arbitrary local files via the entry parameter.