Multiple SQL injection vulnerabilities in myBloggie 2.1.6 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) cat_id or (2) year parameter to index.php in a viewuser action, different vectors than CVE-2005-1500 and CVE-2005-4225.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mywebland mybloggie |