Multiple SQL injection vulnerabilities in index.php in BlognPlus (BURO GUN +) 2.5.5 MySQL and PostgreSQL editions allow remote malicious users to execute arbitrary SQL commands via the (1) p, (2) e, (3) d, and (4) m parameters, a different vulnerability than CVE-2008-2819.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
blognplus blognplus 2.5.5 |