Multiple SQL injection vulnerabilities in BLOG:CMS 4.2.1b allow remote malicious users to execute arbitrary SQL commands via (1) the blogid parameter to index.php, (2) the user parameter to action.php, or (3) the field parameter to admin/plugins/table/index.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
blog cms blog cms 4.2.1_c |