Multiple SQL injection vulnerabilities in index.php in Bloo 1.00 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) post_id, (2) post_category_id, (3) post_year_month, and (4) static_page_id parameters; and unspecified other vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bill roberts bloo |