Back to search
CVE-2006-0240
Published: Jan 18, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple SQL injection vulnerabilities in Simple Blog 2.1 allow remote attackers to execute arbitrary SQL commands via the month parameter in an archives view operation and possibly certain other parameters in unspecified scripts.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2006-0194
vdb-entry
x_refsource_VUPEN
http://www.hackerscenter.com/archive/view.asp?id=21926
x_refsource_MISC
16243
vdb-entry
x_refsource_BID
22447
vdb-entry
x_refsource_OSVDB
20060114 [HSC Security Group] Multiple SQL injection/XSS in SimpleBlog 2.1
mailing-list
x_refsource_BUGTRAQ
simpleblog-month-sql-injection(24155)
vdb-entry
x_refsource_XF
18488
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now