Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mywebland mybloggie vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-3080
Cross-site request forgery (CSRF) vulnerability in admin.php in myWebland myBloggie 2.1.6 allows remote malicious users to perform edit actions as administrators. NOTE: this can be leveraged to execute SQL commands by also exploiting CVE-2007-1899.
Mywebland Mybloggie 2.1.6
1 EDB exploit
NA
CVE-2007-1899
Multiple SQL injection vulnerabilities in myWebland myBloggie 2.1.6 allow remote malicious users to execute arbitrary SQL commands via (1) the user_id parameter in a viewuser action to index.php, and allow remote authenticated administrators to execute arbitrary SQL commands via ...
Mywebland Mybloggie 2.1.6
1 EDB exploit
NA
CVE-2007-3650
myWebland myBloggie 2.1.6 allow remote malicious users to obtain sensitive information via (1) an invalid year parameter to calendar.php, reached through index.php; (2) a direct request to common.php; and (3) a mode array parameter in the query string to login.php, which reveal t...
Mywebland Mybloggie 2.1.6
NA
CVE-2007-3194
Multiple PHP remote file inclusion vulnerabilities in myBloggie 2.1.5 allow remote malicious users to execute arbitrary PHP code via a URL in the bloggie_root_path parameter to (1) config.php; (2) db.php, (3) template.php, (4) functions.php, and (5) classes.php in includes/; (6) ...
Mywebland Mybloggie 2.1.5
NA
CVE-2007-3003
Multiple SQL injection vulnerabilities in myBloggie 2.1.6 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) cat_id or (2) year parameter to index.php in a viewuser action, different vectors than CVE-2005-1500 and CVE-2005-4225.
Mywebland Mybloggie
1 EDB exploit
NA
CVE-2007-0353
Cross-site scripting (XSS) vulnerability in (1) index.php and (2) login.php in myBloggie 2.1.5 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO string.
Mywebland Mybloggie 2.1.5
2 EDB exploits
NA
CVE-2006-4042
Multiple SQL injection vulnerabilities in trackback.php in myWebland myBloggie 2.1.4 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) title, (2) url, (3) excerpt, or (4) blog_name parameters.
Mywebland Mybloggie
1 EDB exploit
NA
CVE-2006-4043
index.php in myWebland myBloggie 2.1.4 and previous versions allows remote malicious users to obtain sensitive information via a query that only specifies the viewdate mode, which reveals the table prefix in a SQL error message.
Mywebland Mybloggie 2.1.2
Mywebland Mybloggie 2.1.3 Beta
Mywebland Mybloggie 2.1.1
Mywebland Mybloggie
Mywebland Mybloggie 2.1.3
NA
CVE-2006-3903
CRLF injection vulnerability in (1) index.php and (2) admin.php in myWebland MyBloggie 2.1.3 allows remote malicious users to hijack sessions and conduct cross-site scripting (XSS) attacks via a cookie.
Mywebland Mybloggie 2.1.3 Beta
Mywebland Mybloggie 2.1.3
NA
CVE-2006-3905
SQL injection vulnerability in Webland MyBloggie 2.1.3 allows remote malicious users to execute arbitrary SQL commands via the (1) post_id parameter in index.php and (2) search function.
Mywebland Mybloggie 2.1.3 Beta
Mywebland Mybloggie 2.1.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »