Multiple SQL injection vulnerabilities in phsBlog 0.1.1 allow remote malicious users to execute arbitrary SQL commands via the (1) eid parameter to comments.php, (2) cid parameter to index.php, and the (3) urltitle parameter to entries.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phsblog phsblog 0.1.1 |