Published: 06/09/2006 Updated: 19/10/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Incomplete blacklist vulnerability in default.asp in 8pixel.net Simple Blog 2.3 and previous versions allows remote malicious users to conduct SQL injection attacks via ">" characters in the id parameter, which are not filtered by the protection mechanism.

Vulnerable Product	Search on Vulmon	Subscribe to Product
8pixel.net simple blog 2.0
8pixel.net simple blog 2.1
8pixel.net simple blog 2.2
8pixel.net simple blog 2.3

_ _ __ _(_)_ __ ___| |_ __ _ \ \ / / | '_ \/ __| __/ _` | \ V /| | |_) \__ \ || (_| | \_/ |_| __/|___/\__\__,_| ...

NVD-CWE-Other http://www.securityfocus.com/bid/19848 http://secunia.com/advisories/21755 http://www.osvdb.org/28541 http://securitytracker.com/id?1016793 http://www.vupen.com/english/advisories/2006/3451 https://www.exploit-db.com/exploits/2296 https://nvd.nist.gov https://www.exploit-db.com/exploits/2296/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-4592

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect