Mike Helton Aoblogger vulnerabilities
3 known vulnerabilities affecting mike_helton/aoblogger.
Total CVEs
3
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2006-0311P3HIGHCVSS 7.5PoCv2.32006-01-19
CVE-2006-0311 [HIGH] CVE-2006-0311: SQL injection vulnerability in login.php in aoblogger 2.3 allows remote attackers to execute arbitra
SQL injection vulnerability in login.php in aoblogger 2.3 allows remote attackers to execute arbitrary SQL commands via the username parameter.
nvd
CVE-2006-0312P3MEDIUMCVSS 5.0PoCv2.32006-01-19
CVE-2006-0312 [MEDIUM] CVE-2006-0312: create.php in aoblogger 2.3 allows remote attackers to bypass authentication and create new blog ent
create.php in aoblogger 2.3 allows remote attackers to bypass authentication and create new blog entries by setting the uza parameter to 1.
nvd
CVE-2006-0310P4MEDIUMCVSS 4.3PoCv2.32006-01-19
CVE-2006-0310 [MEDIUM] CVE-2006-0310: Cross-site scripting (XSS) vulnerability in aoblogger 2.3 allows remote attackers to inject arbitrar
Cross-site scripting (XSS) vulnerability in aoblogger 2.3 allows remote attackers to inject arbitrary Javascript via a javascript URI in the BBcode url tag.
nvd