Back to search
CVE-2007-1899
Published: Jul 9, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple SQL injection vulnerabilities in myWebland myBloggie 2.1.6 allow remote attackers to execute arbitrary SQL commands via (1) the user_id parameter in a viewuser action to index.php, and allow remote authenticated administrators to execute arbitrary SQL commands via (2) the post_id parameter in an edit action to admin.php.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
30892
third-party-advisory
x_refsource_SECUNIA
5975
exploit
x_refsource_EXPLOIT-DB
http://descriptions.securescout.com/tc/17969
x_refsource_MISC
http://www.netvigilance.com/advisory0040
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now