VYPR

Bloggit

by Bloggit

CVEs (3)

  • CVE-2009-0337Jan 29, 2009
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in index.asp in Katy Whitton BlogIt! allows remote attackers to execute arbitrary SQL commands via the (1) month and (2) year parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party…

  • CVE-2009-0334Jan 29, 2009
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in index.asp in Katy Whitton BlogIt! allows remote attackers to execute arbitrary SQL commands via the day parameter in an archive action.

  • CVE-2006-7014Feb 15, 2007
    risk 0.00cvss epss 0.02

    admin.php in BloggIT 1.01 and earlier does not properly establish a user session, which allows remote attackers to gain privileges via a direct request.