VYPR

Blogphp

by Adaptcms

CVEs (3)

  • CVE-2026-6650MedApr 20, 2026
    risk 0.31cvss 4.7epss 0.00

    A vulnerability was identified in Z-BlogPHP 1.7.5. This affects the function App::UnPack of the file /zb_users/plugin/AppCentre/app_upload.php of the component ZBA File Handler. The manipulation leads to unrestricted upload. The attack may be initiated remotely. The exploit is…

  • CVE-2006-0372Jan 22, 2006
    risk 0.03cvss epss 0.01

    Multiple SQL injection vulnerabilities in config.php in Insane Visions BlogPHP, possibly 1.0, allow remote attackers to execute arbitrary SQL commands via the (1) blogphp_username or (2) blogphp_password parameter in a cookie.

  • CVE-2006-0318Jan 19, 2006
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in index.php in BlogPHP 1.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands and bypass authentication via the username parameter in a login action.