CVE-2007-2305

2007-04-2621:00:00

mitre

www.cve.org

8.7 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

77.4%

JSON

Multiple SQL injection vulnerabilities in authenticate.php in Quick and Dirty Blog (QDBlog) 0.4, and possibly earlier, allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.

References

osvdb.org/35746

www.securityfocus.com/bid/23485

www.vupen.com/english/advisories/2007/1387

exchange.xforce.ibmcloud.com/vulnerabilities/33631

www.exploit-db.com/exploits/3729