QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2007-5572

Back to search

CVE-2007-5572

Published: Oct 18, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in Simple PHP Blog (SPHPBlog) 0.4.9 allow remote attackers to perform delete actions as administrators via (1) the block_id parameter to add_block.php or (2) the link_id parameter to add_link.php.

VendorProductVersions

n/a

n/a

affected
n/a

References

simplephpblog-addlink-csrf(37239)
vdb-entry
x_refsource_XF
simplephpblog-addblock-csrf(37238)
vdb-entry
x_refsource_XF
20071017 Multiple CSRF in SimplePHPBlog
mailing-list
x_refsource_BUGTRAQ
27264
third-party-advisory
x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now