Supersimple Super Simple Blog Script vulnerabilities
2 known vulnerabilities affecting supersimple/super_simple_blog_script.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2009-2553P3MEDIUMCVSS 6.8PoCv2.5.42009-07-20
CVE-2009-2553 [MEDIUM] CWE-89 CVE-2009-2553: Multiple SQL injection vulnerabilities in comments.php in Super Simple Blog Script 2.5.4, when magic
Multiple SQL injection vulnerabilities in comments.php in Super Simple Blog Script 2.5.4, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the entry parameter.
nvd
CVE-2009-2552P4MEDIUMCVSS 6.8PoCv2.5.42009-07-20
CVE-2009-2552 [MEDIUM] CWE-22 CVE-2009-2552: Multiple directory traversal vulnerabilities in comments.php in Super Simple Blog Script 2.5.4 allow
Multiple directory traversal vulnerabilities in comments.php in Super Simple Blog Script 2.5.4 allow remote attackers to overwrite, include, and execute arbitrary local files via the entry parameter.
nvd