Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wheatblog wheatblog vulnerabilities and exploits
(subscribe to this query)
515
VMScore
CVE-2006-4198
PHP remote file inclusion vulnerability in includes/session.php in Wheatblog (wB) 1.1 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the wb_class_dir parameter.
Wheatblog Wheatblog 1.0
Wheatblog Wheatblog
1 EDB exploit
605
VMScore
CVE-2006-5195
Multiple cross-site scripting (XSS) vulnerabilities in Wheatblog 1.0 and 1.1 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
Wheatblog Wheatblog 1.0
Wheatblog Wheatblog 1.1
516
VMScore
CVE-2006-5921
Multiple cross-site scripting (XSS) vulnerabilities in add_comment.php in Wheatblog (wB) allow remote malicious users to inject arbitrary web script or HTML via the (1) Name, (2) WWW, and (3) Comment fields. NOTE: this issue may overlap CVE-2006-5195.
Wheatblog Wheatblog
445
VMScore
CVE-2006-5922
index.php in Wheatblog (wB) allows remote malicious users to obtain sensitive information via certain values of the postPtr[] and next parameters, which reveals the path in an error message.
Wheatblog Wheatblog
605
VMScore
CVE-2007-3557
SQL injection vulnerability in admin/login.php in Wheatblog (wB) 1.1, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the login parameter.
Wheatblog Wheatblog 1.1
383
VMScore
CVE-2006-7002
Cross-site scripting (XSS) vulnerability in add_comment.php in Wheatblog (wB) 1.1 allows remote malicious users to inject arbitrary web script or HTML via the Email field. NOTE: the provenance of this information is unknown; the details are obtained solely from third party inform...
Wheatblog Wheatblog 1.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started