Multiple SQL injection vulnerabilities in Ublog Reload 1.0.5 allow remote attackers to execute arbitrary SQL commands via the (1) ci, (2) d, or (3) m parameter to index.asp, or the (4) bi parameter to blog_comment.asp.
References
Link | Resource |
---|---|
http://echo.or.id/adv/adv18-theday-2005.txt | Exploit Vendor Advisory |
http://marc.info/?l=bugtraq&m=111928552304897&w=2 | |
http://www.vupen.com/english/advisories/2005/0818 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2005-06-20T04:00:00
Updated: 2016-10-17T13:57:01
Reserved: 2005-06-20T00:00:00
Link: CVE-2005-2009
JSON object: View
NVD Information
Status : Modified
Published: 2005-06-20T04:00:00.000
Modified: 2016-10-18T03:24:03.190
Link: CVE-2005-2009
JSON object: View
Redhat Information
No data.
CWE