Sql injection

2007-12-2821:46:00

PRIOn knowledge base

www.prio-n.com

9.2 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

39.0%

JSON

Multiple SQL injection vulnerabilities in index.php in zBlog 1.2 allow remote attackers to execute arbitrary SQL commands via (1) the categ parameter in a categ action or (2) the article parameter in an articles action.

CPENameOperatorVersion
zblogeq1.2

CPE	Name	Operator	Version
	zblog	eq	1.2

References

osvdb.org/39774

osvdb.org/39775

www.securityfocus.com/bid/26994

exchange.xforce.ibmcloud.com/vulnerabilities/39239

www.exploit-db.com/exploits/4772