Maian Weblog vulnerabilities
2 known vulnerabilities affecting maian/weblog.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2008-3318P2HIGHCVSS 7.5PoC≤ 3.1≤ 4.02008-07-25
CVE-2008-3318 [HIGH] CWE-287 CVE-2008-3318: admin/index.php in Maian Weblog 4.0 and earlier allows remote attackers to bypass authentication and
admin/index.php in Maian Weblog 4.0 and earlier allows remote attackers to bypass authentication and gain administrative access by sending an arbitrary weblog_cookie cookie.
nvd
CVE-2007-2078P4MEDIUMCVSS 6.8v3.12007-04-18
CVE-2007-2078 [MEDIUM] CVE-2007-2078: PHP remote file inclusion vulnerability in index.php in Maian Weblog 3.1 allows remote attackers to
PHP remote file inclusion vulnerability in index.php in Maian Weblog 3.1 allows remote attackers to execute arbitrary PHP code via a URL in the path_to_folder parameter. NOTE: this issue was disputed by a third party researcher, since the path_to_folder variable is initialized before use
nvd