10 lines
No EOL
437 B
Text
Executable file
10 lines
No EOL
437 B
Text
Executable file
source: http://www.securityfocus.com/bid/24249/info
|
|
|
|
myBloggie is prone to an SQL-injection vulnerability.
|
|
|
|
An attacker can exploit this issue by manipulating the SQL query logic to carry out unauthorized actions on the underlying database.
|
|
|
|
This issue affects myBloggie 2.1.6 and earlier.
|
|
|
|
http://www.example.com/apppath/index.php?mode=viewuser&cat_id='
|
|
http://www.example.com/apppath/index.php?mode=viewuser&month_no=4&year=" |