Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wheatblog wheatblog vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-4198
PHP remote file inclusion vulnerability in includes/session.php in Wheatblog (wB) 1.1 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the wb_class_dir parameter.
Wheatblog Wheatblog 1.0
Wheatblog Wheatblog
1 EDB exploit
NA
CVE-2006-5195
Multiple cross-site scripting (XSS) vulnerabilities in Wheatblog 1.0 and 1.1 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
Wheatblog Wheatblog 1.0
Wheatblog Wheatblog 1.1
NA
CVE-2006-5921
Multiple cross-site scripting (XSS) vulnerabilities in add_comment.php in Wheatblog (wB) allow remote malicious users to inject arbitrary web script or HTML via the (1) Name, (2) WWW, and (3) Comment fields. NOTE: this issue may overlap CVE-2006-5195.
Wheatblog Wheatblog
NA
CVE-2006-5922
index.php in Wheatblog (wB) allows remote malicious users to obtain sensitive information via certain values of the postPtr[] and next parameters, which reveals the path in an error message.
Wheatblog Wheatblog
NA
CVE-2007-3557
SQL injection vulnerability in admin/login.php in Wheatblog (wB) 1.1, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the login parameter.
Wheatblog Wheatblog 1.1
NA
CVE-2006-7002
Cross-site scripting (XSS) vulnerability in add_comment.php in Wheatblog (wB) 1.1 allows remote malicious users to inject arbitrary web script or HTML via the Email field. NOTE: the provenance of this information is unknown; the details are obtained solely from third party inform...
Wheatblog Wheatblog 1.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started