Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4919

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-4919
Last Modified 07 Mar 2011 09:59:38
Published 17 Sep 2007 01:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-4919

Summary

Multiple SQL injection vulnerabilities in JBlog 1.0 allow (1) remote attackers to execute arbitrary SQL commands via the id parameter to index.php, and allow (2) remote authenticated administrators to execute arbitrary SQL commands via the id parameter to admin/modifpost.php.

Vulnerable Systems

Application

  • Jblog 1.0


References

XF - jblog-index-modifpost-sql-injection(36602)

VUPEN - ADV-2007-3178

BID - 25669

MILW0RM - 4408


Last Updated: 27 May 2016 10:46:01